Better Together: Next Gen SOC Powered by Microsoft Sentinel and Tanium

This lab focuses on integrating Tanium with Microsoft Sentinel to enhance SOC (Security Operations Center) capabilities. The integration utilizes Tanium connectors and Sentinel's real-time capabilities to offer several benefits:

• Data Integration: Students will learn how to send data from Tanium to Sentinel and create incidents using the Tanium connection.
• Incident Management: The lab involves leveraging both automated and manual incident actions, utilizing Tanium as a data source.
• Real-time Remediation: Students will use Tanium's API for real-time remediation actions within Sentinel.

FREE PASS TO CONVERGE 2024
Using this code you can register for a free pass to Converge 2024. You will pay for labs and travel, but the conference pass will be free. Use code "A-McGl-35855" (no quotes) when you register at https://converge.tanium.com.

CHAPTERS

00:00 Intro

01:00 Meet Dries and Marijo

02:30 What is the lab?

03:53 Who should take it?

05:53 Microsoft Sentinel Integration

10:15 PwC Value Add

12:09 Thank you

12:45 Sign up for Converge Labs

#informationsecurity #informationtechnology #microsoft #sentinel #pwc #integration #dfir #incidentresponse