Azure Sentinel

Published: Feb 08 2021

In this episode Michael, Sarah, Gladys and Mark talk with guest Ofer Shezaf about Azure Sentinel.

In the news we discuss Azure Security news for the following services: Azure Security Center, HDInight, Azure Attestation and IaaS SQL Server using Secure Enclaves.

Gladys covers some of the material she learned this week about Privileged Access Workstations (PAWs), especially in light of Solorigate. PAWs are not just for tier-0 admins, but also for developers.

Mark covers Azure Security Benchmarks, extending threat and vulnerability management to macOS and shares details about Cybersecurity Maturity Model Certification (CMMC) Workbook.

Ofer is a Principal Product Manage in the Azure Sentinel team and has years of experience building Security Information and Events Management (SIEM) systems.

Ofer also discusses the history of Azure Sentinel and shares some of his insightful philosophies about SIEMs.