Recent Blog ArticlesNewest TopicsMost LikesTagged:TagWhat’s new: Run playbooks on entities on-demand SOC analysts can take action on a selected entity while investigating an incident or hunting entities; SOC engineers can encapsulate automated actions that run on a specific entity, saving time and m...What’s new: Incident tasks SOC analysts can follow checklists to handle the processes of incident triage, investigation, and response without worrying about missing a critical step; SOC managers and MSSPs can document, update,...What’s new: Monitor the health of your automation rules and playbooks Now available: Monitor the execution of your automation rules and playbooks, visualize automation health data, audit who triggered playbooks on demand, correlate Azure Logic Apps and Microsoft Sentin...What’s new: Centrally manage automated response to alerts with automation rules Centrally manage automated response to alerts with automation rules. What’s new: Automate full incident lifecycle with incident update triggers Teams can now create automation rules and playbooks which run when incident fields are modified – for example, when an owner is assigned, when alerts and comments are added, and more. What's new: Power-up automation with Logic Apps Standard Now available: Automate response, run on-demand and manage Logic Apps Standard playbooks with Microsoft Sentinel. Logic Apps Standard provides an even more flexible, containerized, modern cloud-scale...What's new: run playbooks on incidents on demand Analysts can now run playbooks on demand while they work on an incident, whether for enrichment, investigation and orchestration, or as remediation steps after they are confirmed as necessary. Automa...Automate more with 200+ OOTB playbooks Over the last year a lot of out-of-the-box playbook content has been added to Microsoft Sentinel. Now, it is easier than ever to implement security automation scenarios, improve SOC efficiency, and b...What’s new: Managed Identity for Azure Sentinel Logic Apps connector Now available: Grant permissions directly to a playbook to operate on Azure Sentinel, instead of creating additional identities. What's New: Azure Sentinel Logic Apps Connector improvements and new capabilities New incident update experience, Assign owner in playbooks, rich comments editor and new dynamic fields returning from Get Incident - Now available in Azure Sentinel Logic Apps connector.
