Master Class: Microsoft Defender and Microsoft Sentinel for Hybrid Cloud

Master Class: Microsoft Defender and Microsoft Sentinel for Hybrid CloudHYBSECMTMaster ClassMT-HYBSEC1.0<p>Administrators with experience of at least 5 years in administering Windows Active Directory Domain Services, Azure Active Directory and Azure resources.</p><h5>Defender for Cloud</h5><ul> <li>Overview of Defender for Cloud</li><li>Prerequisites and implementation</li><li>Securing Azure workloads</li><li>Securing on-premises workloads</li><li>Cloud Security Posture Management overview</li><li>Use automation to respond to alerts</li><li>Mastering Azure Policy guest configuration</li></ul> <h5>Defender for Identity</h5><ul> <li>Overview of MS Defender for Identity</li><li>Planning MS Defender for Identity Deployment<br/>(Architecture, Prerequisites)+</li><li>Implement Defender for Identity</li><li>Investigate alerts/detections <ul> <li>Reconnaissance Alerts</li><li>Compromised Credential Alerts</li><li>Lateral Movement Alerts</li><li>and some more</li></ul></li></ul><h5>KQL Primer</h5><ul> <li>Basic operators for querying tables and formatting output</li><li>Working with variables</li><li>Advance operators and functions <ul> <li>Extending tables</li><li>Querying and filtering property bags</li><li>Aggregate records and</li><li>Create custom functions</li></ul></li><li>working with multiple tables and external data</li></ul><h5>Microsoft Sentinel</h5><ul> <li>Data collectors Implementation</li><li>Creating Analytic rules</li><li>Use automation to respond to Incidents</li><li>Automatically enrich incident information</li><li>Investigate Incidents</li><li>Perform threat hunting</li><li>Create workbooks</li><li>Investigate with UEBA</li></ul>Administrators with experience of at least 5 years in administering Windows Active Directory Domain Services, Azure Active Directory and Azure resources.Defender for Cloud - Overview of Defender for Cloud - Prerequisites and implementation - Securing Azure workloads - Securing on-premises workloads - Cloud Security Posture Management overview - Use automation to respond to alerts - Mastering Azure Policy guest configuration Defender for Identity - Overview of MS Defender for Identity - Planning MS Defender for Identity Deployment (Architecture, Prerequisites)+ - Implement Defender for Identity - Investigate alerts/detections - Reconnaissance Alerts - Compromised Credential Alerts - Lateral Movement Alerts - and some more KQL Primer - Basic operators for querying tables and formatting output - Working with variables - Advance operators and functions - Extending tables - Querying and filtering property bags - Aggregate records and - Create custom functions - working with multiple tables and external data Microsoft Sentinel - Data collectors Implementation - Creating Analytic rules - Use automation to respond to Incidents - Automatically enrich incident information - Investigate Incidents - Perform threat hunting - Create workbooks - Investigate with UEBA5 days5990.005990.005990.005990.005990.005990.006520.00999.004980.004780.009000.00