There are different areas, where companies often struggle, when it comes to security. Setting up a proper Security Monitoring is definitely one of them. There is a lot of complexity in building a SOC, where you do not only discover anomalies caused but the average attacker but really seeing more of what is going on and – at least as important – being able to act upon.
The problem as such – to me – is a typical one, where the cloud can and should come in. It is all about correlation of huge amounts of data. Additionally, we are committed to scale the knowledge of security pros in a way that you can focus your people on the issues where their skills are really needed.
Azure Sentinel, our Cloud native SIEM, focuses exactly on these challenges. Not only to we simplify onboarding of logs but once you did that we add our threat intelligence as well as the power of Azure to make your work more efficient.
You can have a very good first look at Azure Sentinel in this video:
More to come