This “Azure Sentinel Best Practices” whitepaper outlines best practice recommendations for configuring data sources for Microsoft Azure Sentinel, using Azure Sentinel during incident response, and proactively hunting for threats using Azure Sentinel.
Azure Sentinel makes it easy to collect security data across your entire hybrid organization from devices, users, apps, servers, and any cloud. Using the power of artificial intelligence, Sentinel ensures that real threats are identified quickly and unleashes you from the burden of traditional security incident and event management solutions (SIEMs) by automating setting up, maintaining, and scaling infrastructure.
- WHITEPAPER: Azure Sentinel Best Practices (.PDF, 14pgs)
https://www.microsoft.com/security/blog/wp-content/uploads/2020/07/Azure-Sentinel-whitepaper.pdf
kurtsh
Kurt Shintaku's Blog 