Microsoft Sentinel Blog | Microsoft Community Hub

Recent Blogs

2 MIN READ

Manage cases from across tenants in one place

Are you managing the security needs of a large organization or a managed security service provider (MSSP)? Would you like a unified view of all the cases you are managing across these tenants? We...

BenNick Microsoft Sentinel Blog

Jun 19, 2025

microsoft defender xdr

microsoft sentinel

what's new

xdr

218Views

0likes

0Comments

7 MIN READ

Microsoft Sentinel: Repositories, the Future of Content-as-Code & Best Practices

In the ever-evolving landscape of cybersecurity, both automation and infrastructure-as-code (IaC) have become indispensable. SIEM solutions, traditionally known for their complex configurations and m...

Patrick_Saint-Tulias Microsoft Sentinel Blog

Jun 16, 2025

550Views

2likes

0Comments

4 MIN READ

Case Management: Incidents, Cases, and When to Use Them

In March, Case Management went to GA status within the unified portal for customers. This introduced new functionality and experiences such as: A new case queue Custom statuses New Case task ...

Matt_Lowe Microsoft Sentinel Blog

Jun 11, 2025

best practices

security operations

710Views

0likes

0Comments

4 MIN READ

Exciting Announcements: New Data Connectors Released Using the Codeless Connector Framework

Microsoft Sentinel’s Codeless Connector Framework or ‘CCF’ (formerly called Codeless Connector Platform [CCP]) represents a paradigm shift in data ingestion, making it easier than ever for organisati...

PrateekTaneja Microsoft Sentinel Blog

468Views

0likes

1Comment

6 MIN READ

Automating Microsoft Sentinel: Part 2: Automate the mundane away

Welcome to the second entry of our blog series on automating Microsoft Sentinel. In this series, we’re showing you how to automate various aspects of Microsoft Sentinel, from simple automation of S...

Matt Egen Microsoft Sentinel Blog

microsoft defender xdr

microsoft sentinel

976Views

1like

0Comments

3 MIN READ

AI-Powered MITRE ATT&CK Tagging for SOC Optimization

This post is part of an update series highlighting new SOC optimization capabilities designed to help SOC teams maximize security value with less manual effort. In this post, we focus on AI-powered M...

NoamDruker Microsoft Sentinel Blog

May 20, 2025

detection

microsoft sentinel

threat detection and response

what's new

1.4KViews

0likes

0Comments

5 MIN READ

Automating Microsoft Sentinel: A blog series on enabling Smart Security

Welcome to the first entry of our blog series on automating Microsoft Sentinel. We're excited to share insights and practical guidance on leveraging automation to enhance your security posture. In th...

Matt Egen Microsoft Sentinel Blog

May 19, 2025

automation

azure

microsoft defender xdr

microsoft sentinel

1.4KViews

5likes

2Comments

5 MIN READ

Risk-based Recommendation for SOC Optimization

This post is part of a blog series highlighting new SOC optimization capabilities designed to help SOC teams maximize security value and reduce costs, leveraging tailored dynamic recommendations. In ...

NoamDruker Microsoft Sentinel Blog

May 12, 2025

microsoft sentinel

solutions

threat detection and response

1.2KViews

0likes

1Comment

3 MIN READ

The Power of a Unified SIEM+XDR IdentityInfo Schema

We are excited to share that the updated IdentityInfo schema is planned to be available by May 12th! This upcoming enhancement will unify identity insights from SIEM (Microsoft Sentinel, UEBA) and XD...

ShaharAviv Microsoft Sentinel Blog

May 12, 2025

1.4KViews

2likes

2Comments

3 MIN READ

Automate Extraction of Microsoft Sentinel Analytical Rules from GitHub Solutions

🔧 Enhancing Pre-Deployment Rule Insights Extracting metadata like Rule Name, Severity, MITRE Tactics, and Techniques for out-of-the-box analytical rules across multiple solutions can be time-consu...

VipulDabhi Microsoft Sentinel Blog

864Views

2likes

0Comments