Azure Sentinel Ninja Training - the Sept 2021 update

Published Sep 05 2021 03:42 PM 5,563 Views
Microsoft

It's that time of year again... time for another update of the Azure Sentinel Ninja training! (access the training here)

 

In this post I'll list the new and updated modules with important new features for the ninja training. As per usual with the ninja training updates, there have been many changes to Azure Sentinel in this time and the updates found here should not be considered exhaustive. To keep up to date with all the new features being released in Azure Sentinel, make sure you regularly monitor our what's new page.

 

Azure Sentinel Ninja Training Certification

An important update to the training is the release of the Azure Sentinel Ninja Training knowledge check. This has already been announced in a separate blog post but for completeness it has also been included in this update post. You can take the knowledge check and if you score over 80%, you can fill in the self-attestation form to receive an Azure Sentinel Ninja Training certification. 

 

Note: it can take up to one business day for you to receive your certificate via email.          

 

New and updated modules 

New modules that cover new functionality areas in Azure Sentinel:

  • Module X: Migration
  • Module Y: Notebooks
  • Module Z: ASIM and Normalization

 

Also, several modules have been expanded:

  • Module 3: Workspace and tenant architecture - expanded to cover more MSSP/multi-tenant scenario guidance.
  • Module 4: Data collection - expanded to cover the Azure Monitor Agent (AMA).
  • Module 8: Analytics - expanded to cover SOC-ML anomalies and Fusion ML Detections with Scheduled Analytics Rules.
  • Module 11: Use cases and solutions - added content about the Solutions gallery.
  • Module 12: Handling incidents - covers Teams integration with Sentinel.
  • Module 13: Hunting - updated to reflect the new hunting dashboard. 

 

New and updated webinars

  • Module 4: Data collection - a new webinar covering data collection scenarios.
  • Module 5: Log Management - a new webinar that covers using Azure Data Explorer for long-term retention of Azure Sentinel logs.
  • Module 15: Monitoring Azure Sentinel's health - a new webinar that covers cost management in Azure Sentinel.

 

Azure Sentinel webinars coming soon

  • Learn About Customizable Anomalies and How to Use Them - Sept 14
  • Azure Sentinel | What's New in the Last 6 Months - Sept 15
  • Turbocharging ASIM: Making Sure Normalization Helps Performance Rather Than Impacting It - Oct 6
  • SAP Mini-Series Part 1: Introduction to Monitoring SAP with Azure Sentinel for Security Professionals - Oct 18
  • Explore the Power of Threat Intelligence in Azure Sentinel - 25 Oct
  • What’s New in Azure Sentinel Automation - Oct 28
  • SAP Mini-Series Part 2: Deep Dive - End-to-End Installation of SAP for Azure Sentinel - Nov 9
  • Decrease Your SOC’s MTTR (Mean Time to Respond) by Integrating Azure Sentinel with Microsoft Teams - Nov 10
  • Create Your Own Azure Sentinel Solutions - Nov 16
  • Everything You Ever Wanted to Know About Using the New Azure Monitor Agent (AMA) with Azure Sentinel - Nov 22

 

You can sign up for webinars here. Please note that the registration links will be made available approximately two weeks before the webinar. Until then, all dates are tentative.

3 Comments
Valued Contributor

Thank you for sharing.

Occasional Contributor

Hello @Sarah_Young,

 

I have taken the 'knowledge check' test and attained an over 80% score.

 

I have requested a certificate from the self-attestation form) but received no email.

 

Can I ask when they are sent out?

 

Cheers

 

Jason S 

Microsoft

@JMSHW0420 per the post above, it can take up to one business day to receive your certificate.

%3CLINGO-SUB%20id%3D%22lingo-sub-2725384%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20Sentinel%20Ninja%20Training%20-%20the%20Sept%202021%20update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2725384%22%20slang%3D%22en-US%22%3E%3CP%3EThank%20you%20for%20sharing.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2725958%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20Sentinel%20Ninja%20Training%20-%20the%20Sept%202021%20update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2725958%22%20slang%3D%22en-US%22%3E%3CP%3EHello%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F538161%22%20target%3D%22_blank%22%3E%40Sarah_Young%3C%2FA%3E%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20taken%20the%20'knowledge%20check'%20test%20and%20attained%20an%20over%2080%25%20score.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20requested%20a%20certificate%20from%20the%20self-attestation%20form)%20but%20received%20no%20email.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECan%20I%20ask%20when%20they%20are%20sent%20out%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECheers%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EJason%20S%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2726231%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20Sentinel%20Ninja%20Training%20-%20the%20Sept%202021%20update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2726231%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F604547%22%20target%3D%22_blank%22%3E%40JMSHW0420%3C%2FA%3E%26nbsp%3Bper%20the%20post%20above%2C%20it%20can%20take%20up%20to%20one%20business%20day%20to%20receive%20your%20certificate.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2677688%22%20slang%3D%22en-US%22%3EAzure%20Sentinel%20Ninja%20Training%20-%20the%20Sept%202021%20update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2677688%22%20slang%3D%22en-US%22%3E%3CP%3EIt's%20that%20time%20of%20year%20again...%20time%20for%20another%20update%20of%20the%20Azure%20Sentinel%20Ninja%20training!%20(access%20the%20training%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fazure-sentinel%2Fbecome-an-azure-sentinel-ninja-the-complete-level-400-training%2Fba-p%2F1246310%22%20target%3D%22_blank%22%3Ehere%3C%2FA%3E)%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EIn%20this%20post%20I'll%20list%20the%20new%20and%20updated%20modules%20with%20important%20new%20features%20for%20the%20ninja%20training.%20As%20per%20usual%20with%20the%20ninja%20training%20updates%2C%20there%20have%20been%20many%20changes%20to%20Azure%20Sentinel%20in%20this%20time%20and%20the%20updates%20found%20here%20should%20not%20be%20considered%20exhaustive.%20To%20keep%20up%20to%20date%20with%20all%20the%20new%20features%20being%20released%20in%20Azure%20Sentinel%2C%20make%20sure%20you%20regularly%20monitor%20our%20%3CA%20href%3D%22https%3A%2F%2Faka.ms%2Fasnew%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ewhat's%20new%20page%3C%2FA%3E.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CH2%20id%3D%22toc-hId--379137742%22%20id%3D%22toc-hId--355273297%22%3EAzure%20Sentinel%20Ninja%20Training%20Certification%3C%2FH2%3E%0A%3CP%3EAn%20important%20update%20to%20the%20training%20is%20the%20release%20of%20the%20Azure%20Sentinel%20Ninja%20Training%20knowledge%20check.%20This%20has%20already%20been%20announced%20in%20a%20separate%20blog%20post%20but%20for%20completeness%20it%20has%20also%20been%20included%20in%20this%20update%20post.%20You%20can%20take%20the%20%3CA%20href%3D%22https%3A%2F%2Fforms.office.com%2Fr%2FHWc2gvd4HD%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Eknowledge%20check%3C%2FA%3E%20and%20if%20you%20score%20over%2080%25%2C%20you%20can%20fill%20in%20the%20%3CA%20href%3D%22https%3A%2F%2Fforms.office.com%2Fr%2FZCrqFiktgy%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Eself-attestation%20form%3C%2FA%3E%20to%20receive%20an%20Azure%20Sentinel%20Ninja%20Training%20certification.%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CEM%3ENote%3A%20it%20can%20take%20up%20to%20one%20business%20day%20for%20you%20to%20receive%20your%20certificate%20via%20email.%3C%2FEM%3E%20%26nbsp%3B%20%26nbsp%3B%20%26nbsp%3B%20%26nbsp%3B%20%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CH2%20id%3D%22toc-hId-1931980402%22%20id%3D%22toc-hId-2108375091%22%20id%3D%22toc-hId-2132239536%22%3ENew%20and%20updated%20modules%26nbsp%3B%3C%2FH2%3E%0A%3CP%3ENew%20modules%20that%20cover%20new%20functionality%20areas%20in%20Azure%20Sentinel%3A%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3EModule%20X%3A%20Migration%3C%2FLI%3E%0A%3CLI%3EModule%20Y%3A%20Notebooks%3C%2FLI%3E%0A%3CLI%3EModule%20Z%3A%20ASIM%20and%20Normalization%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%3EAlso%2C%20several%20modules%20have%20been%20expanded%3A%3C%2FSPAN%3E%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3E%3CSPAN%3EModule%203%3A%20Workspace%20and%20tenant%20architecture%20-%20expanded%20to%20cover%20more%20MSSP%2Fmulti-tenant%20scenario%20guidance.%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3EModule%204%3A%20Data%20collection%20-%20expanded%20to%20cover%20the%20Azure%20Monitor%20Agent%20(AMA).%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3EModule%208%3A%20Analytics%20-%20expanded%20to%20cover%20SOC-ML%20anomalies%20and%26nbsp%3BFusion%20ML%20Detections%20with%20Scheduled%20Analytics%20Rules.%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3EModule%2011%3A%20Use%20cases%20and%20solutions%20-%20added%20content%20about%20the%20Solutions%20gallery.%3C%2FLI%3E%0A%3CLI%3EModule%2012%3A%20Handling%20incidents%20-%20covers%20Teams%20integration%20with%20Sentinel.%3C%2FLI%3E%0A%3CLI%3EModule%2013%3A%20Hunting%20-%20updated%20to%20reflect%20the%20new%20hunting%20dashboard.%26nbsp%3B%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CH2%20id%3D%22toc-hId-124525939%22%20id%3D%22toc-hId-300920628%22%20id%3D%22toc-hId-324785073%22%3ENew%20and%20updated%20webinars%3C%2FH2%3E%0A%3CUL%3E%0A%3CLI%3EModule%204%3A%20Data%20collection%20-%20a%20new%20webinar%20covering%20data%20collection%20scenarios.%3C%2FLI%3E%0A%3CLI%3EModule%205%3A%20Log%20Management%20-%20a%20new%20webinar%20that%20covers%20%3CSPAN%3Eusing%20Azure%20Data%20Explorer%20for%20long-term%20retention%20of%20Azure%20Sentinel%20logs.%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3E%3CSPAN%3EModule%2015%3A%26nbsp%3B%3C%2FSPAN%3E%3C%2FSPAN%3EMonitoring%20Azure%20Sentinel's%20health%20-%20a%20new%20webinar%20that%20covers%20c%3CSPAN%3Eost%20management%20in%20Azure%20Sentinel.%3C%2FSPAN%3E%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CH2%20id%3D%22toc-hId--1506533835%22%20id%3D%22toc-hId--1482669390%22%3E%26nbsp%3B%3C%2FH2%3E%0A%3CH2%20id%3D%22toc-hId-124525939%22%20id%3D%22toc-hId-980978998%22%20id%3D%22toc-hId-1004843443%22%3EAzure%20Sentinel%20webinars%20coming%20soon%3C%2FH2%3E%0A%3CUL%3E%0A%3CLI%3ELearn%20About%20Customizable%20Anomalies%20and%20How%20to%20Use%20Them%20-%20Sept%2014%3C%2FLI%3E%0A%3CLI%3EAzure%20Sentinel%20%7C%20What's%20New%20in%20the%20Last%206%20Months%20-%20Sept%2015%3C%2FLI%3E%0A%3CLI%3ETurbocharging%20ASIM%3A%20Making%20Sure%20Normalization%20Helps%20Performance%20Rather%20Than%20Impacting%20It%20-%20Oct%206%3C%2FLI%3E%0A%3CLI%3ESAP%20Mini-Series%20Part%201%3A%20Introduction%20to%20Monitoring%20SAP%20with%20Azure%20Sentinel%20for%20Security%20Professionals%20-%20Oct%2018%3C%2FLI%3E%0A%3CLI%3EExplore%20the%20Power%20of%20Threat%20Intelligence%20in%20Azure%20Sentinel%20-%2025%20Oct%3C%2FLI%3E%0A%3CLI%3EWhat%E2%80%99s%20New%20in%20Azure%20Sentinel%20Automation%20-%20Oct%2028%3C%2FLI%3E%0A%3CLI%3ESAP%20Mini-Series%20Part%202%3A%20Deep%20Dive%20-%20End-to-End%20Installation%20of%20SAP%20for%20Azure%20Sentinel%20-%20Nov%209%3C%2FLI%3E%0A%3CLI%3EDecrease%20Your%20SOC%E2%80%99s%20MTTR%20(Mean%20Time%20to%20Respond)%20by%20Integrating%20Azure%20Sentinel%20with%20Microsoft%20Teams%20-%20Nov%2010%3C%2FLI%3E%0A%3CLI%3ECreate%20Your%20Own%20Azure%20Sentinel%20Solutions%20-%20Nov%2016%3C%2FLI%3E%0A%3CLI%3EEverything%20You%20Ever%20Wanted%20to%20Know%20About%20Using%20the%20New%20Azure%20Monitor%20Agent%20(AMA)%20with%20Azure%20Sentinel%20-%20Nov%2022%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CFONT%3EYou%20can%20sign%20up%20for%20webinars%20%3CA%20href%3D%22https%3A%2F%2Faka.ms%2FSecurityWebinars%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehere%3C%2FA%3E.%20Please%20note%20that%20the%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3CSTRONG%3Eregistration%20links%3C%2FSTRONG%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3Ewill%20be%20made%20available%20approximately%20two%20weeks%20before%20the%20webinar.%20Until%20then%2C%20all%20dates%20are%20tentative.%3C%2FFONT%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-TEASER%20id%3D%22lingo-teaser-2677688%22%20slang%3D%22en-US%22%3E%3CP%3EYes%2C%20it's%20that%20time%20of%20year%20-%20time%20for%20an%20update%20to%20the%20Azure%20Sentinel%20Ninja%20training!%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22ninjapost.png%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F308225iA16B5681FA42DC01%2Fimage-size%2Flarge%3Fv%3Dv2%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%22ninjapost.png%22%20alt%3D%22ninjapost.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-TEASER%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2677688%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EAzure%20Sentinel%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EDetection%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EHunting%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EInvestigation%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ESecurity%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EVAST%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EWhat's%20New%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Co-Authors
Version history
Last update:
‎Sep 08 2021 02:07 AM
Updated by: