Regulatory Compliance in Azure Security Center Workflow Automation Reaches GA

As you know, in Azure Security Center, Workflow Automation can be used to trigger Logic Apps when security center data changes. In February of this year, the ability to enable these triggers based on Regulatory Compliance changes entered preview. Today, this capability is now complete and released to GA. As shown below, you can now … Continue reading Regulatory Compliance in Azure Security Center Workflow Automation Reaches GA

Replay Available: Cicadas and Microsoft Defender for Identity on the Microsoft Security Insights Podcast

Edward was out again this week so I filled in, helping as a guest-host once again. The discussion was wonderful and I learned a heap about Microsoft Defender for Identity, including some things I've been asked about by customers recently. Now, I can go back to those customers and sound really cool and intelligent. I … Continue reading Replay Available: Cicadas and Microsoft Defender for Identity on the Microsoft Security Insights Podcast

How to be Mindful Against Dupes and Noise with the new Azure Sentinel/M365 Defender Integration

I've spent a good amount of time so far on this blog talking about steps on how to eliminate extra noise in Azure Sentinel. But, reading through the updated docs for the new integration between Azure Sentinel and Microsoft 365 Defender, there's a section that sticks out related to this that I didn't want anyone … Continue reading How to be Mindful Against Dupes and Noise with the new Azure Sentinel/M365 Defender Integration

New Microsoft Security Operations Analyst Associate Certification with Azure Sentinel and Defender

If you've taken the exam for the Microsoft Azure Security Engineer certification, you may have gotten a bit excited in mid-2020 when it was announced Azure Sentinel and Azure Security Center content would be added. I was (does that make me weird?). But, after that announcement, I was a bit disappointed in the number of … Continue reading New Microsoft Security Operations Analyst Associate Certification with Azure Sentinel and Defender