Explore Microsoft Sentinel with an interactive guide on how to deploy, detect and investigate security threats.

This module aims to introduce you to Microsoft Sentinel as a cloud-native security information and event management (SIEM) solution. As a security analyst, this module will guide you through deploying Sentinel and leveraging its capabilities to detect, investigate, and respond to security threats, ultimately enhancing your organization's security posture.

MS Sentinel: Introduction

What is Microsoft Sentinel and how does it fit into the role of a Security Operations Analyst?

MS Sentinel: Deploy

All the things you need for the initial Microsoft Sentinel deployment.

MS Sentinel: Ingest Data

No logs, no correlation, no analysis, no action. Where is my log data?

MS Sentinel: Detect

This room showcases how MS Sentinel helps in detecting and investigating threats.

MS Sentinel: Investigate

Investigate and manage incidents in Microsoft Sentinel.

Topic Rewind Recap

Lock in what you learned with a recap. Earn points and keep your streak.

Next steps

KQL

Get hands-on with analysing security logs to detect and investigate threats efficiently using KQL.

What are modules?

A learning pathway is made up of modules, and a module is made of bite-sized rooms (think of a room like a mini security lab).

Hierarchical diagram showing how learning pathways contain modules, which contain individual rooms.