Automating Microsoft Sentinel: A blog series on enabling Smart Security

Microsoft

May 19, 2025

Learn how to use automation tools and techniques to make your security operations awesome right away with Microsoft Sentinel.

Welcome to the first entry of our blog series on automating Microsoft Sentinel. We're excited to share insights and practical guidance on leveraging automation to enhance your security posture. In th...

Published May 19, 2025

Version 1.0

automation

azure

microsoft defender xdr

microsoft sentinel

Matt Egen

Microsoft

Joined September 30, 2016

View Profile

Microsoft Sentinel Blog

Microsoft Sentinel is an industry-leading SIEM & AI-first platform powering agentic defense across the entire security ecosystem.

fwhosea

Copper Contributor

May 23, 2025

Nice article, Matt. It would be helpful to elaborate on how automation rules can be scoped or filtered to target specific assets or conditions within the broader application of an analytic rule. Providing a concrete example or a step-by-step guide on setting up such a rule would enhance understanding. Regards, Frank

Matt Egen

Microsoft

May 23, 2025

Thank you for your kind words! There are about five more articles coming in this series and the next one specifically is going to cover Automation Rules :-)

Blog Post

Automating Microsoft Sentinel: A blog series on enabling Smart Security

Learn how to use automation tools and techniques to make your security operations awesome right away with Microsoft Sentinel.