Learn Azure Sentinel
暫譯: 學習 Azure Sentinel

Name: Learn Azure Sentinel
Price: 1159 TWD
Availability: InStock
Author: Diver, Richard, Bushey, Gary
ISBN: 183898092X

Diver, Richard, Bushey, Gary

出版商: Packt Publishing
出版日期: 2020-04-06
售價: $1,220
貴賓價: 9.5 折 $1,159
語言: 英文
頁數: 404
裝訂: Quality Paper - also called trade paper
ISBN: 183898092X
ISBN-13: 9781838980924
相關分類: Microsoft Azure

立即出貨 (庫存=1)

買這商品的人也買了...

商品描述

Understand how to set up, configure, and use Azure Sentinel to provide security incident and event management services for your environment

Key Features

Secure your network, infrastructure, data, and applications on Microsoft Azure effectively
Integrate artificial intelligence, threat analysis, and automation for optimal security solutions
Investigate possible security breaches and gather forensic evidence to prevent modern cyber threats

Book Description

Azure Sentinel is a Security Information and Event Management (SIEM) tool developed by Microsoft to integrate cloud security and artificial intelligence (AI). Azure Sentinel not only helps clients identify security issues in their environment, but also uses automation to help resolve these issues. With this book, you’ll implement Azure Sentinel and understand how it can help find security incidents in your environment with integrated artificial intelligence, threat analysis, and built-in and community-driven logic.

This book starts with an introduction to Azure Sentinel and Log Analytics. You’ll get to grips with data collection and management, before learning how to create effective Azure Sentinel queries to detect anomalous behaviors and patterns of activity. As you make progress, you’ll understand how to develop solutions that automate the responses required to handle security incidents. Finally, you’ll grasp the latest developments in security, discover techniques to enhance your cloud security architecture, and explore how you can contribute to the security community.

By the end of this book, you’ll have learned how to implement Azure Sentinel to fit your needs and be able to protect your environment from cyber threats and other security issues.

What you will learn

Understand how to design and build a security operations center
Discover the key components of a cloud security architecture
Manage and investigate Azure Sentinel incidents
Use playbooks to automate incident responses
Understand how to set up Azure Monitor Log Analytics and Azure Sentinel
Ingest data into Azure Sentinel from the cloud and on-premises devices
Perform threat hunting in Azure Sentinel

Who this book is for

This book is for solution architects and system administrators who are responsible for implementing new solutions in their infrastructure. Security analysts who need to monitor and provide immediate security solutions or threat hunters looking to learn how to use Azure Sentinel to investigate possible security breaches and gather forensic evidence will also benefit from this book. Prior experience with cloud security, particularly Azure, is necessary.

商品描述(中文翻譯)

**了解如何設置、配置和使用 Azure Sentinel 以提供您環境的安全事件和事件管理服務**

#### 主要特點

- 有效保護您在 Microsoft Azure 上的網絡、基礎設施、數據和應用程序
- 整合人工智慧、威脅分析和自動化以獲得最佳安全解決方案
- 調查可能的安全漏洞並收集取證證據以防止現代網絡威脅

#### 書籍描述

Azure Sentinel 是由 Microsoft 開發的安全信息和事件管理 (SIEM) 工具，旨在整合雲安全和人工智慧 (AI)。Azure Sentinel 不僅幫助客戶識別其環境中的安全問題，還利用自動化來幫助解決這些問題。通過本書，您將實施 Azure Sentinel，並了解它如何利用整合的人工智慧、威脅分析以及內建和社群驅動的邏輯來幫助發現您環境中的安全事件。

本書首先介紹 Azure Sentinel 和 Log Analytics。您將掌握數據收集和管理，然後學習如何創建有效的 Azure Sentinel 查詢以檢測異常行為和活動模式。隨著進展，您將了解如何開發自動化響應以處理安全事件的解決方案。最後，您將掌握安全領域的最新發展，發現增強雲安全架構的技術，並探索如何為安全社群做出貢獻。

到本書結束時，您將學會如何實施 Azure Sentinel 以滿足您的需求，並能夠保護您的環境免受網絡威脅和其他安全問題。

#### 您將學到的內容

- 了解如何設計和建立安全運營中心
- 發現雲安全架構的關鍵組件
- 管理和調查 Azure Sentinel 事件
- 使用操作手冊自動化事件響應
- 了解如何設置 Azure Monitor Log Analytics 和 Azure Sentinel
- 從雲端和本地設備將數據導入 Azure Sentinel
- 在 Azure Sentinel 中進行威脅獵捕

#### 本書適合誰

本書適合負責在其基礎設施中實施新解決方案的解決方案架構師和系統管理員。需要監控並提供即時安全解決方案的安全分析師，或希望學習如何使用 Azure Sentinel 調查可能的安全漏洞並收集取證證據的威脅獵捕者也將受益於本書。對雲安全，特別是 Azure 的先前經驗是必要的。

作者簡介

Richard Diver has over 25 years' international experience in technology with a deep technical background in cloud security, identity management, and information security. He works at Insight as the lead for Cloud Security Architecture, working with top partners across the industry to deliver comprehensive cloud security solutions. Any spare time he gets is usually spent with his family.

Gary Bushey is an Azure security expert with over 25 years of IT experience. He got his start early on when he helped his fifth-grade math teacher with their programming homework and worked all one summer to be able to afford his first computer, a Commodore 64. When he sold his first program, an apartment management system, at 14 he was hooked. During his career, he has worked as a developer, consultant, trainer, and architect. When not spending time in front of a computer, you can find him hiking in the woods, taking pictures, or just picking a direction and finding out what is around the next corner.

作者簡介(中文翻譯)

Richard Diver 擁有超過 25 年的國際科技經驗，並在雲端安全、身份管理和資訊安全方面擁有深厚的技術背景。他在 Insight 擔任雲端安全架構的負責人，與業界頂尖夥伴合作，提供全面的雲端安全解決方案。他的空閒時間通常與家人共度。

Gary Bushey 是一位 Azure 安全專家，擁有超過 25 年的 IT 經驗。他的起步相當早，曾在五年級時幫助數學老師完成程式設計作業，並在一個夏天工作以負擔他的第一台電腦，Commodore 64。14 歲時，他售出了第一個程式，一個公寓管理系統，從此愛上了程式設計。在他的職業生涯中，他曾擔任開發人員、顧問、培訓師和架構師。當不在電腦前時，你可以找到他在森林中健行、拍照，或隨意選擇一個方向，探索下一個轉角的風景。