Posted by: kurtsh | November 26, 2020

TRAINING: Learn how to export data from Splunk to AzureSentinel

imageLearn how Azure Sentinel can consume security telemetry data directly from a 3rd Party SIEM like Splunk.

Why do we want to share this scenario? For some scenarios it makes sense to use data from 3rd Party SIEMs for correlation with available data sources in Azure Sentinel, also Sentinel can be used as single pane of glass to centralize all incidents (generated by different SIEM solutions) and finally you will probably have to deliver the side-by-side for a while until your security team will be more comfortable working within the new SIEM (Azure Sentinel).

Read the full blog post here:


%d bloggers like this: