Ignite Public Preview Announcement: OT-Enabled SOC with Microsoft Sentinel and Defender for IoT

Microsoft Ignite kicked off yesterday and we are taking the opportunity to announce the Public Preview of OT-Enabled SOC with Microsoft Sentinel and Defender for IoT.

 

 

Ignite Activities and Announcements

• Ignite On-Demand Video Session: Defending against OT/ICS threats with an OT-Enabled SOC
• Ignite Breakout Video What’s new in SIEM and XDR: Attack disruption and SOC empowerment – Check out Rob's part on Defender for IoT and Sentinel solution begins at minute 22.
• Microsoft Sentinel Blog (posted by Sarah Fender): What's New at Microsoft Ignite - Monitor IT and OT environments.
• Defender for IoT Announcement Blog
• Sentinel Announcement Blog

 

Solution Capabilities

 

Read the announcement blog in Microsoft Defender for IoT tech community, to learn about the main capabilities of Defender for IoT solution for Microsoft Sentinel: 

1. Integrate IoT/OT Security context and processes with Sentinel in 2 clicks. 
2. Streamline the IoT/OT SOC investigation experience with dedicated built-in features. 
3. Automate response for IoT/OT threats with out-of-the-books SOAR Playbooks. 
4. Enable the OT SOC by providing SOC analysts OT domain monitoring capabilities.