I just found this article https://docs.microsoft.com/en-us/azure-advanced-threat-protection/cef-format-sa which explains the format to integrate Azure ATP with SIEMs, but I can't find any article explaining HOW to actually do that integration. Any help will be apprectiated.
