Securing your Organization with Azure Sentinel

Oct 15, 2021

Originally Published on Techwire: Securing your Organization with Azure Sentinel (techwire.net)

Azure Sentinel is Microsoft’s Security Information Event Management platform (SIEM). This technology empowers your organization to get a birds-eye view across your enterprise to detect, investigate, and rapidly respond to security threats.

What is Sentinel and how did we get here

In a recent Gartner study Microsoft was a leader in many areas of security. Beyond this, Azure is the number one trusted cloud platform with its large number of compliance offerings. However, with their sub-brand of Defender security products there was a gap in Microsoft’s stack of services, they recognized the need for a true SIEM. With the development of Sentinel, they now have tooling to aggregate, correlate, and act on disparate events from both 1st party and 3rd party security products allowing them to tell a more conclusive story on securing the enterprise.

From a high-level Azure Sentinel is a Platform as a Service (PaaS) that runs on top of Azure’s log aggregator or Log Analytics Workspace. Sentinel is a resource deployed in your Azure environment and managed through the Azure Portal. This layered functionality incorporates existing functionality that collect logs in Azure and layers on additional functionality like integrated API’s for easier data ingestion, threat detection/investigation leveraging AI, and automatic response to said threats.

Planet Technologies is offering a free Demo of Azure Sentinel for organizations interested in learning more about the benefits of and/or deploying Azure Sentinel.

Figure 1: Azure Sentinel in a hybrid environment

 

For more information contact Jennifer Dodd at [email protected]

The Planet Way

We don't just meet standards, we set them.

Planet Technologies was built around developing long-term relationships with our partners. We pride ourselves on working hard to keep our staff trained on the latest technologies, policy, and operational issues impacting today’s public and private sector environments. Being an expert on the technology we support is the first step, but more importantly is understanding your business mission and integrating technology into a long-term strategic plan.