As more workloads are being migrated to the cloud, SOC teams are increasingly adopting Microsoft security technologies such as Microsoft Azure Sentinel and Microsoft Defender for Endpoint to natively protect these workloads. But this also brings about new challenges that need to be addressed such as:
• Effectively migrating on-premise security monitoring infrastructures and log sources.
• Maintaining and continuously optimizing analytic rules, playbooks, workbooks, hunting queries and integrations for automated responses.
• Managing the costs of data ingestion into the cloud once you realize the volume of data being analyzed.
In this webinar, CISO, Security Business decision makers, Security analysts, and Security Directors will be given guidance on how to address these issues, as well as the key considerations when adopting a cloud-native SOC with Microsoft including:
• Breaking down the people, process and technology fundamentals.
• Addressing the four key layers of a cloud-native SOC architecture.
• The metrics and measurement of ‘SOCcess’.
• Example of how Microsoft and CyberProof modernized a customer’s SOC to be cloud-native.