SC-900 - Microsoft Security Solutions - Section 3.3

Describe the capabilities of Microsoft Sentinel.

Describe Microsoft Sentinel as a cloud-native SIEM and SOAR solution that collects, correlates, and analyses security data at scale across an enterprise. Distinguish its threat detection capabilities, such as analytics rules and threat hunting, from its SOAR automation playbooks used to accelerate incident response and mitigation.

Examworthy is not affiliated with or endorsed by Microsoft. Original, blueprint-aligned practice material only.