A Look at Microsoft’s Cloud-Native SIEM – Darwin Salazar – ESW #259
In late 2019, Microsoft released their cloud-native SIEM, Sentinel. A lot in the world has changed since then so we'll be looking at Sentinel's progression, talking about it's features and what may make it attractive to enterprises in 2022 and beyond.
To register for Darwin’s upcoming workshop with Security Weekly, please visit:
https://attendee.gotowebinar.com/register/2393226017093033995?source=esw
Microsoft Sentinel Ninja Training - https://techcommunity.microsoft.com/t5/microsoft-sentinel-blog/become-a-microsoft-sentinel-ninja-the-complete-level-400/ba-p/1246310#
Forrester MSFT Sentinel reports indicating 201% ROI over 3 years - https://www.microsoft.com/security/blog/2020/11/16/forrester-tei-study-azure-sentinel-delivers-201-percent-roi-over-3-years-and-a-payback-of-less-than-6-months/
If you want to get started with Kusto Query Language (KQL) without having to bootstrap your own environment, MSFT has a live log analytics workspace with tons of log data. You must have an Azure subscription to use. Link : https://aka.ms/lademo
Announcements
CRA's Business Intelligence Unit has launched its next survey on Zero Trust! What are Your Barriers to Zero Trust Implementation? Take our survey and enter to win a $500 Tango card by visiting https://securityweekly.com/zerotrust. Report results will be released at our upcoming Zero Trust E-Summit in March!
Guest
Darwin Salazar is currently a Cloud Security Consultant at Accenture. Prior to this, Darwin worked in IoT Security for medical devices and vehicles for various Fortune 500s. He is also a former Security Weekly intern! Darwin obtained his master’s degree in Homeland Security @ Salve Regina University and has completed multiple business certificate programs @ Harvard Business School. Darwin is passionate about giving back to his community, fitness, baseball, God and family.
Hosts
