Automate threat detection and response with Azure Sentinel and Microsoft 365 Defender


Manage episode 300651514 series 2391604
Av Jeremy Chapman and Microsoft Mechanics oppdaget av Player FM og vårt samfunn — opphavsrett er eid av utgiveren, ikke Plaer FM, og lyd streames direkte fra deres servere. Trykk på Abonner knappen for å spore oppdateringer i Player FM, eller lim inn feed URLen til andre podcast apper.

Watch how Microsoft's cloud-based SIM, Azure Sentinel, along with our XDR technologies, including Microsoft 365 Defender, provide an automated approach to threat detection and response. Rob Lefferts, Microsoft Security CVP, joins Jeremy Chapman to show you the latest integrative defenses and tools to respond quickly in the context of a real attack.

The threat landscape has reached a new level of urgency, whether it's human operated ransomware, or sophisticated command and control attacks, and the techniques being used are getting harder to detect — like supply chain attacks that embed malware in the apps and IoT devices that you trust. Stop these types of attacks with the right measures and preparation.

Put the right defense layers in place with the Zero Trust security model.

Increase your organization's ability to detect and respond before an attack does any damage.

If the damage has already started, contain the blast radius and quickly reverse any damage that has already been done.

Our integrated SIM with Azure Sentinel and Microsoft 365 Defender and Azure Defender for XDR apply Microsoft's unique volume and diversity of threat intelligence for early warning and response to give you visibility and depth of insight across your organization.


00:00 - Introduction 01:07 - Preparation to stop attacks 03:02 - Demo of hybrid attack 04:56 - Where to start: Azure Sentinel 08:53 - Stop the spread: Microsoft 365 Defender 10:27 - Alerts 13:10 - Compromised user accounts 15:21 - Users on unmanaged devices 16:59 - Wrap up

► Link References:

Learn more about our integrated SIM and XDR solution with Azure Sentinel and Microsoft's Defender solutions at Watch our series on implementing the Zero Trust security model at

► Unfamiliar with Microsoft Mechanics? We are Microsoft’s official video series for IT. You can watch and share valuable content and demos of current and upcoming tech from the people who build it at Microsoft.

Subscribe to our YouTube: Join us on the Microsoft Tech Community: Watch or listen via podcast here:

► Keep getting this insider knowledge, join us on social:

Follow us on Twitter: Follow us on LinkedIn:

#Security #Cybersecurity #InfoSec

333 episoder