Defender for Cloud Cost Estimation

In an ongoing effort to understand and plan for costs associated with Defender for Cloud plans the team at Microsoft has been developing workbooks to assist with cost estimation. Each Defender Plan has a different pricing model based on the resource type. These pricing models are best viewed via the Pricing — Azure Defender | Microsoft … Read more

What’s New in Microsoft Security — February Edition

Sentinel Search, Basic Ingestion, Archive, and Data Restoration Ingestion-time transformations and Custom Logs v2 Advanced Security Information Model (ASIM) — out of the box MITRE view Run playbooks on incidents on demand Run playbooks on workbooks on demand Azure Purview Integration Codeless Connector Platform Large Watchlists Defender for Cloud Native CSPM for GCP and threat … Read more

Microsoft Sentinel Workspace Settings Best Practices

Since Microsoft Sentinel leverages Azure Log Analytics as its data platform it is therefore beheld to the Log Analytics Workspace default settings. When creating a initial instance of Azure Sentinel and the corresponding Log Analytics Workspace there are few settings you need to further enable manually. Workspace Data Retention Settings Out of the box a … Read more

%d bloggers like this: