Session Name: Automation and Security in Azure Sentinel
Remember those days we had to use escalation grid and RACI matrix to know what to do if an incident happens? or the times we would panic not knowing what is next when a threat was identified. Well luckily those days are behind us, and Azure sentinel has a lot to offer to automate and secure your investigation process.
In this talk, we will look into workbooks and integration with logic apps to facilitate incident management in azure sentinel.
IT security consultant with experience in incident management, SOC automation, and security architecture.