Recent Blogs
Creating high-quality ASIM parsers has always required deep knowledge about source data and ASIM schemas, careful KQL design, and repeated validation cycles. That process is meaningful to understand ...
Jul 15, 202682Views
0likes
0Comments
Modern Security Operations Centers are not short on tools. They are short on continuity. Analysts jump from alert consoles to data exploration, from enrichment to investigation, and from evidence gat...
Jul 13, 2026462Views
0likes
0Comments
5 MIN READ
Behind the Build is an ongoing series spotlighting standout Microsoft partner collaborations. Each edition dives into the technical and strategic decisions that shape real-world integrations—highligh...
Jun 30, 2026311Views
1like
0Comments
Co-authored with Lizet Pena, Caroline Mutua, Alvin Kua and Marco Sudahl
The portal change was the easy part. The real upside is the operating model it unlocks—generative AI in every workflow, behav...
Jun 30, 2026557Views
0likes
1Comment
Welcome back to What's new in Microsoft Sentinel. In June, Sentinel SIEM’s Advanced Security Information Model (ASIM) broadens its normalization, so one analytic rule can reach more sources with less...
Jun 30, 2026597Views
2likes
0Comments
Co-authored with Lizet Pena, Caroline Mutua, Alvin Kua and Marco Sudahl
The transition is not a project—it is a sequence of small, ordered decisions. Here is the readiness tool that scores your env...
Jun 29, 2026253Views
0likes
0Comments
Co-authored with Lizet Pena, Caroline Mutua, Alvin Kua and Marco Sudahl
Governance is the silent dependency every transition trips on. Read about how roles, data tiering, and multi-tenant operation...
Jun 25, 2026436Views
0likes
0Comments
Microsoft Sentinel platform offers a growing list of tools and features, with graph being a cornerstone capability.
Sentinel graph is a relationship-first method for organizing and querying data wi...
Jun 23, 2026871Views
1like
1Comment
14 MIN READ
Co-authored with Lizet Pena, Caroline Mutua, Alvin Kua and Marco Sudahl
How analytics rules, playbooks, workbooks, and hunting evolve in Defender—and why the new toolbelt makes detection engineerin...
Jun 18, 2026728Views
1like
1Comment
12 MIN READ
Co-authored with Lizet Pena, Caroline Mutua, Alvin Kua and Marco Sudahl
Incidents, alerts, correlation, and data—what actually changes with the new platform, and why it works in your favor.
When ...
Jun 17, 2026688Views
0likes
0Comments
Tags
- microsoft sentinel271 Topics
- siem108 Topics
- investigation107 Topics
- what's new106 Topics
- security96 Topics
- detection92 Topics
- hunting65 Topics
- soar50 Topics
- threat hunting44 Topics
- data collection42 Topics