Discover how Security Orchestration, Automation, and Response (SOAR) in Microsoft Sentinel can streamline your cybersecurity operations. This guide unpacks the core components of SOAR, illustrating…
All about M365, Azure and Security
Author: Andreas Rogge
I am a Security Solutions Architect with more than 10 years of IT experience. I love to understand customer needs and find a technical good solution for everyone. All Microsoft services are familiar to me but I want to focus on Security related Microsoft products like Microsoft 365 Defender and Microsoft Sentinel. I started early with cloud adoption and I am still convinced that cloud computing is the way to go. Now, I want to help out the community with Microsoft Security content about Microsoft Sentinel and Microsoft 365 Defender products - not just during my 9-5 work in a company, but also in my free-time.
By using Microsoft Defender for Endpoint (MDE) to protect your Windows Server, you can safeguard your organization’s critical data, applications, and services from a wide…
Phishing is one of the biggest security threats facing organizations today. Phishing is an attack that involves tricking people into revealing sensitive information through fraudulent…
Recently, I was having a problem creating Defender for Office365 threat policies in new M365 tenants. Every time I tried to create an anti-spam policy,…
Microsoft Defender for Identity (short MDI, formerly Azure Advanced Threat Protection, also known as Azure ATP) is a cloud-based security solution that leverages your on-premises…
Microsoft Defender for Identity (short MDI, formerly Azure Advanced Threat Protection, also known as Azure ATP) is a security tool that helps protect businesses and…
Let’s audit your Microsoft Certification Authority with Microsoft Sentinel and be one step ahead of the attacker More and more services depend on certificates for…
Introduction With Microsoft Intune you can manage most of your endpoints like Windows 10/11, Android, iOS, macOS and the newest operating systems: Chrome and Linux…
I already made some posts how to implement and connect data sources to Microsoft Sentinel. The other side is that you have to pay per…
Microsoft released a new agent named Azure Monitoring Agent (AMA) to forward logs to Log Analytic workspace and is about to send the old Microsoft…