Microsoft Secure Tech Accelerator
Apr 03 2024, 07:00 AM - 11:00 AM (PDT)
Microsoft Tech Community

New Blog Post | What’s new: Centrally manage automated response to alerts with automation rules

Microsoft

Antonio_Alejandro_0-1657056942156.png

What’s new: Centrally manage automated response to alerts with automation rules - Microsoft Tech Com...

 

A playbook in Microsoft Sentinel is a collection of actions that can be run as a routine. It can be run manually or set to run automatically in response to specific alerts or incidents. Previously, playbooks designated to run in response to alerts could be automatically invoked only by an analytics rule. Now, you can use automation rules to centrally manage and run your alert-trigger playbooks in addition to your incident-trigger playbooks.

0 Replies