Exclusives

  • Technical lab: Available for 180 days of online access
  • Class material: Complete and up to date with Microsoft Learn
  • Proof of attendance: Digital badge for completing the official Microsoft course
  • Fast and guaranteed schedule: Maximum wait of 4 to 6 weeks after participant registrations, guaranteed date

Get started with Microsoft Sentinel security operations by configuring the Microsoft Sentinel workspace, connecting Microsoft services and Windows security events to Microsoft Sentinel, configuring Microsoft Sentinel analytics rules, and responding to threats with automated responses.

Expand

Private class

Inquire for this training to be delivered exclusively for the members of your organization.

Training plan

  • Introduction
  • Plan for the Microsoft Sentinel workspace
  • Create a Microsoft Sentinel workspace
  • Manage workspaces across tenants using Azure Lighthouse
  • Understand Microsoft Sentinel permissions and roles
  • Manage Microsoft Sentinel settings
  • Configure logs
  • Introduction
  • Plan for Microsoft services connectors
  • Connect the Microsoft Office 365 connector
  • Connect the Microsoft Entra connector
  • Connect the Microsoft Entra ID Protection connector
  • Connect the Azure Activity connector
  • Introduction
  • Plan for Windows hosts security events connector
  • Connect using the Windows Security Events via AMA Connector
  • Connect using the Security Events via Legacy Agent Connector
  • Collect Sysmon event logs
  • Introduction
  • Exercise – Detect threats with Microsoft Sentinel analytics
  • What is Microsoft Sentinel Analytics?
  • Types of analytics rules
  • Create an analytics rule from templates
  • Create an analytics rule from wizard
  • Manage analytics rules
  • Exercise – Detect threats with Microsoft Sentinel analytics
  • Introduction
  • Understand automation options
  • Create automation rules
  • Introduction
  • Exercise – Configure SIEM operations using Microsoft Sentinel
  • Exercise – Install Microsoft Sentinel Content Hub solutions and data connectors
  • Exercise – Configure a data connector Data Collection Rule
  • Exercise – Perform a simulated attack to validate the Analytic and Automation rules

Recommended Prerequisite Knowledge

  • Fundamental understanding of Microsoft Azure
  • Basic understanding of Microsoft Sentinel
  • Experience using Kusto Query Language (KQL) in Microsoft Sentinel

Credentials and certification

Features

  • Preparatory training for obtaining a Microsoft Applied Skills credential.
  • Performance is assessed through an interactive remote lab.
  • Duration: 120 minutes
  • Cost: $0

Assessment’s technical tasks

  • Create and configure a Microsoft Sentinel workspace
  • Deploy a Microsoft Sentinel content hub solution
  • Configure analytics rules in Microsoft Sentinel
  • Configure automation in Microsoft Sentinel

View all assessment details on Microsoft Learn >>

Request form for a private class training

Dear Client,

We confirm the receipt of your request regarding the training: Configure SIEM security operations using Microsoft Sentinel (SC-5001)

Here is the information we have received.

Language: English

Duration: 1 day / 7 hours

Number of participants from your company: *

Minimum number of participants: 6

Name of your organization *
Your name and surname: *
Phone Number: *
Professional email: *
How did you hear about us? *
Comments or Remarks:
Promotional code:
I accept the General Terms and Conditions
The General Conditions are accessible on this page.

Our website uses cookies to personalize your browsing experience. By clicking ‘I accept,’ you consent to the use of cookies.