Microsoft Security Sentinel

Microsoft Security Sentinel

Share this post

Microsoft Security Sentinel
Microsoft Security Sentinel
🔥HOT OFF THE PRESS: Microsoft Secure 2023 - Summary for SIEM & XDR 🔥
Copy link
Facebook
Email
Notes
More

🔥HOT OFF THE PRESS: Microsoft Secure 2023 - Summary for SIEM & XDR 🔥

José Lázaro
Apr 06, 2023

Share this post

Microsoft Security Sentinel
Microsoft Security Sentinel
🔥HOT OFF THE PRESS: Microsoft Secure 2023 - Summary for SIEM & XDR 🔥
Copy link
Facebook
Email
Notes
More
Share

Building a more secure future requires an end-to-end approach. There is no question that technology plays an essential role, but security will always be human-centered. Microsoft Secure is all about sharing knowledge, best practices, and innovative tech to empower defenders.

🔥 What's new? 🔥

1️⃣ Microsoft Incident Response: Announcing the general availability of Microsoft Incident Response Retainer for organizations seeking Microsoft's global expertise.

🛡️ Microsoft Sentinel announcements:

🔹Enrich incidents with MDTI: Improved MDTI integration, entity-level threat intelligence, and more hunting playbooks for faster insights (Public Preview).

🔹Data Connector: MDTI enrichment in Sentinel playbooks for enhanced detections and advanced investigations.

🔹Analytics rule: Reveal static and dynamic info from files and URLs in the MDTI search interface, including SONAR verdict info.

🔹Enhanced incident management: new incident management page (Public Preview) for efficient triage, investigation, and response.

🔹Expanded multi-cloud coverage: Enhanced GCP and AWS coverage coming in April (Public Preview).

🔹SAP application coverage: SAP Business Technology Platform (BTP) coverage (Public Preview) and certified Microsoft Sentinel solution for SAP S/4 HANA Cloud, Private Edition, RISE with SAP, and SAP NetWeaver.

🔹SAP data exfiltration detection: Monitor malicious activities, such as files downloaded from a suspicious IP address, sensitive data saved or exported to USB drives, or printed.

🛡️ M365 Defender updates:

🔹Collaboration Security for Microsoft Teams: Extending email security capabilities in Defender for Office 365, including end-user reporting, detection, hunting, and more to protect Microsoft Teams users (Public Preview).

🔹Expanded SaaS Security Posture Management (SSPM) for critical apps: Extending SSPM to Citrix ShareFile, DocuSign, Okta, and GitHub, helping customers identify misconfigurations and take remediation actions to strengthen app posture (Public Preview).

#microsoft #microsoftsecurity #microsoft365 #securitycopilot #microsoftsentinel #mde #mdo #cybersecurity #sap #mdti #soc #siem #xdr #msftadvocate #MSPartnerUk #security

Thanks for reading Microsoft Security Sentinel! Subscribe for free to receive new posts and support my work.

Share this post

Microsoft Security Sentinel
Microsoft Security Sentinel
🔥HOT OFF THE PRESS: Microsoft Secure 2023 - Summary for SIEM & XDR 🔥
Copy link
Facebook
Email
Notes
More
Share

Discussion about this post

No posts

Ready for more?

© 2025 José Lázaro Pinos
Privacy ∙ Terms ∙ Collection notice
Start WritingGet the app
Substack is the home for great culture

Share

Copy link
Facebook
Email
Notes
More