Forum Discussion
MCAS or 365 Security
Hey all, I'm relatively new into the industry and been tasked with championing some of our E5 platforms. We have both MCAS and MS 365 Security which I'm going to call MDE... My questions are: 1...
Thanks Thijoubert,
I suppose I was most interested in what portal alerts were best actioned in?
In CAS I seem to be able to modify policies for alerts, even though they aren't fully working. Whereas in 365 security I can't suppress every alert which is frustrating. I like 365 security better but if CAS is better functionality wise not sure which to use.
Thanks!
I suppose I was most interested in what portal alerts were best actioned in?
In CAS I seem to be able to modify policies for alerts, even though they aren't fully working. Whereas in 365 security I can't suppress every alert which is frustrating. I like 365 security better but if CAS is better functionality wise not sure which to use.
Thanks!
In this case, the new M365 Defender Portal should answer to your needs.
You define the policies in the different admin centers and you manage them in the unified portal (with the incidents and alerts pages)
https://docs.microsoft.com/en-us/microsoft-365/security/defender/overview-security-center?view=o365-worldwide
Sami Lamppu wrote an interesting article on this topic: https://samilamppu.com/2020/11/24/microsoft-365-defender-vs-azure-sentinel-which-one-to-use/
You define the policies in the different admin centers and you manage them in the unified portal (with the incidents and alerts pages)
https://docs.microsoft.com/en-us/microsoft-365/security/defender/overview-security-center?view=o365-worldwide
Sami Lamppu wrote an interesting article on this topic: https://samilamppu.com/2020/11/24/microsoft-365-defender-vs-azure-sentinel-which-one-to-use/