New Blog Post | Correlating Microsoft Defender for Cloud alerts in Sentinel

Correlating Microsoft Defender for Cloud alerts in Sentinel - Microsoft Tech Community

 

Your cyber security team is faced with numerous alerts every single day. Alert grouping techniques aim to bring together alerts that are similar in nature or require similar steps in order to be solved.
We will take the MDC (Microsoft Defender for Cloud) as an example.
Defender for Cloud generates alerts for resources deployed on your Azure, on-premises, and hybrid cloud environments.
In order to get these alerts into the environment you are required to enable the MDC data connector.