Summary
Resolution of module problem
Contoso SecOps wanted to improve their response time to security incidents and prevent future incidents. Contoso decides to use Microsoft Sentinel playbooks, which are based on Logic Apps with a Microsoft Sentinel connector to provide near real-time responses. In this module, you learned how to create Sentinel playbooks that can respond in real time on a security thread. You also learned how to start a playbook on demand as response to investigation on a security alert.
Learn more
You can learn more by reviewing the following documents.
Getting started
- Microsoft Sentinel documentation
- Quickstart: On-board Microsoft Sentinel
- Microsoft Sentinel pricing
- Permissions in Microsoft Sentinel
- Tutorial: Visualize and monitor your data
- Quickstart: Get started with Microsoft Sentinel
- What is Azure Lighthouse?
- Extend Microsoft Sentinel across workspaces and tenants
- What is Azure Resource Manager?
- Azure Foundation 4-Week Implementation