97. Microsoft Azure Sentinel
97. Microsoft Azure Sentinel
Jelle and Gerben talk about Microsoft Azure Sentinel. They discuss how to set up monitoring and incident response, demonstrating how Sentinel can be used to centralize security data from Azure activity logs for better visibility and automated response. Key points include ingesting logs into a Log Analytics workspace, using content packs for data connectors and analytics rules, and scanning data at the subscription or resource group level. They also show how logs can be analyzed for potential threats using queries and custom alerts. Their discussion emphasizes starting small, continuously improving rules and workbooks over time based on detected signals, and considering red team testing to evaluate detection capabilities.
Links for more information:
More videos
-
134. Getting Started with Aspire for Local Development
Colin and Yvo discuss how Aspire simplifies local development by orchestrating application environments, automatically connecting services, managing dependencies, and improving onboarding, debugging, and team collaboration.Content typeVideo
-
133. Graph Databases in SQL Server
Christian and Bram show how SQL Server’s graph database capabilities simplify working with complex relationships, making connected data easier to model, query, and analyze.Content typeVideo
-
132. Antipatterns in test automation
Bram and Christian discuss test automation pitfalls, urging discipline, less UI logic, backend testing of business rules, and improving stability with better data and environments.Content typeVideo
Stay up to date with our Betatalks and tech updates!
Sign up and receive a biweekly update with the latest knowledge and developments.