Why XDR is your SIEM's new BFF...
12 هزار بار بازدید -
3 سال پیش
-
Too many incidents. Too many
Too many incidents. Too many alerts. Not enough automated response. Your SIEM needs help! Meet, XDR! XDR can correlate alerts across security solutions into an incident to provide full context to a threat - and provide automated remediation. Sending incidents with full alert context to your SIEM is key. Yes you still need a SIEM to pull data from multi-cloud, 3rd party security products, perform custom SOAR and big data analytics, machine learning, etc - to get a complete picture! Let's take a look at Microsoft's XDR solution - Microsoft 365 Defender.
Technical Docs (must read!): https://docs.microsoft.com/en-us/micr...
Licensing Requirements:https://docs.microsoft.com/en-us/micr...
FAQ: https://docs.microsoft.com/en-us/micr...
Turn it on! https://docs.microsoft.com/en-us/micr...
Create a lab! https://docs.microsoft.com/en-us/micr...
Table of Contents:
00:00:00 Intro
00:01:05 Why XDR?
00:04:00 XDR to the rescue!
00:05:25 Microsoft 365 Defender
Technical Docs (must read!): https://docs.microsoft.com/en-us/micr...
Licensing Requirements:https://docs.microsoft.com/en-us/micr...
FAQ: https://docs.microsoft.com/en-us/micr...
Turn it on! https://docs.microsoft.com/en-us/micr...
Create a lab! https://docs.microsoft.com/en-us/micr...
Table of Contents:
00:00:00 Intro
00:01:05 Why XDR?
00:04:00 XDR to the rescue!
00:05:25 Microsoft 365 Defender
3 سال پیش
در تاریخ 1400/02/11 منتشر شده
است.
12,035
بـار بازدید شده