SC-5001: Configure SIEM security operations using Microsoft Sentinel
Reference : MS SC-5001Educational objectives
At the end of this course, participants should be able to:
- Create and configure a Microsoft Sentinel workspace
- Deploy Microsoft Sentinel Content Hub solutions and data connectors
- Configure Microsoft Sentinel Data Collection rules, NRT Analytic rule and Automation
- Perform a simulated attack to validate Analytic and Automation rules
Course programme
This course introduces learners to configure SIEM security operations using Microsoft Sentinel.
Who is this course for?
Public
This course is ideal for IT Security professionals, Security Operations Center (SOC) analysts, and IT administrators focusing on configuring SIEM security operations using Microsoft Sentinel.
Prerequisites
Before attending this course, participants should have:
- Basic experience with Azure services
- Basic knowledge of operational concepts, such as monitoring, logging, and alerting
- An Azure subscription