Microsoft Sentinel Ninja Training - the Sept 2021 update

Published Sep 05 2021 03:42 PM 10.1K Views
Microsoft

It's that time of year again... time for another update of the Microsoft Sentinel Ninja training! (access the training here)

 

In this post I'll list the new and updated modules with important new features for the ninja training. As per usual with the ninja training updates, there have been many changes to Microsoft Sentinel in this time and the updates found here should not be considered exhaustive. To keep up to date with all the new features being released in Microsoft Sentinel, make sure you regularly monitor our what's new page.

 

Microsoft Sentinel Ninja Training Certification

An important update to the training is the release of the Microsoft Sentinel Ninja Training knowledge check. This has already been announced in a separate blog post but for completeness it has also been included in this update post. You can take the knowledge check and if you score over 80%, you can fill in the self-attestation form to receive an Microsoft Sentinel Ninja Training certification. 

 

Note: it can take up to one business day for you to receive your certificate via email.          

 

New and updated modules 

New modules that cover new functionality areas in Microsoft Sentinel:

  • Module X: Migration
  • Module Y: Notebooks
  • Module Z: ASIM and Normalization

 

Also, several modules have been expanded:

  • Module 3: Workspace and tenant architecture - expanded to cover more MSSP/multi-tenant scenario guidance.
  • Module 4: Data collection - expanded to cover the Azure Monitor Agent (AMA).
  • Module 8: Analytics - expanded to cover SOC-ML anomalies and Fusion ML Detections with Scheduled Analytics Rules.
  • Module 11: Use cases and solutions - added content about the Solutions gallery.
  • Module 12: Handling incidents - covers Teams integration with Sentinel.
  • Module 13: Hunting - updated to reflect the new hunting dashboard. 

 

New and updated webinars

  • Module 4: Data collection - a new webinar covering data collection scenarios.
  • Module 5: Log Management - a new webinar that covers using Azure Data Explorer for long-term retention of Microsoft Sentinel logs.
  • Module 15: Monitoring Azure Sentinel's health - a new webinar that covers cost management in Microsoft Sentinel.

 

Microsoft Sentinel webinars coming soon

  • Learn About Customizable Anomalies and How to Use Them - Sept 14
  • Microsoft Sentinel | What's New in the Last 6 Months - Sept 15
  • Turbocharging ASIM: Making Sure Normalization Helps Performance Rather Than Impacting It - Oct 6
  • SAP Mini-Series Part 1: Introduction to Monitoring SAP with Microsoft Sentinel for Security Professionals - Oct 18
  • Explore the Power of Threat Intelligence in Azure Sentinel - 25 Oct
  • What’s New in Microsoft Sentinel Automation - Oct 28
  • SAP Mini-Series Part 2: Deep Dive - End-to-End Installation of SAP for Azure Sentinel - Nov 9
  • Decrease Your SOC’s MTTR (Mean Time to Respond) by Integrating Microsoft Sentinel with Microsoft Teams - Nov 10
  • Create Your Own Microsoft Sentinel Solutions - Nov 16
  • Everything You Ever Wanted to Know About Using the New Azure Monitor Agent (AMA) with Microsoft Sentinel - Nov 22

 

You can sign up for webinars here. Please note that the registration links will be made available approximately two weeks before the webinar. Until then, all dates are tentative.

4 Comments
%3CLINGO-SUB%20id%3D%22lingo-sub-2725384%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20Sentinel%20Ninja%20Training%20-%20the%20Sept%202021%20update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2725384%22%20slang%3D%22en-US%22%3E%3CP%3EThank%20you%20for%20sharing.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2725958%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20Sentinel%20Ninja%20Training%20-%20the%20Sept%202021%20update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2725958%22%20slang%3D%22en-US%22%3E%3CP%3EHello%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F538161%22%20target%3D%22_blank%22%3E%40Sarah_Young%3C%2FA%3E%2C%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20taken%20the%20'knowledge%20check'%20test%20and%20attained%20an%20over%2080%25%20score.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EI%20have%20requested%20a%20certificate%20from%20the%20self-attestation%20form)%20but%20received%20no%20email.%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECan%20I%20ask%20when%20they%20are%20sent%20out%3F%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ECheers%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EJason%20S%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2726231%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20Sentinel%20Ninja%20Training%20-%20the%20Sept%202021%20update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2726231%22%20slang%3D%22en-US%22%3E%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F604547%22%20target%3D%22_blank%22%3E%40JMSHW0420%3C%2FA%3E%26nbsp%3Bper%20the%20post%20above%2C%20it%20can%20take%20up%20to%20one%20business%20day%20to%20receive%20your%20certificate.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2766791%22%20slang%3D%22en-US%22%3ERe%3A%20Azure%20Sentinel%20Ninja%20Training%20-%20the%20Sept%202021%20update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2766791%22%20slang%3D%22en-US%22%3E%3CP%3EThanks%20very%20much%20for%20sharing%2C%20appreciated.%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-2677688%22%20slang%3D%22en-US%22%3EMicrosoft%20Sentinel%20Ninja%20Training%20-%20the%20Sept%202021%20update%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2677688%22%20slang%3D%22en-US%22%3E%3CP%3EIt's%20that%20time%20of%20year%20again...%20time%20for%20another%20update%20of%20the%20Microsoft%20Sentinel%20Ninja%20training!%20(access%20the%20training%20%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fazure-sentinel%2Fbecome-an-azure-sentinel-ninja-the-complete-level-400-training%2Fba-p%2F1246310%22%20target%3D%22_blank%22%3Ehere%3C%2FA%3E)%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EIn%20this%20post%20I'll%20list%20the%20new%20and%20updated%20modules%20with%20important%20new%20features%20for%20the%20ninja%20training.%20As%20per%20usual%20with%20the%20ninja%20training%20updates%2C%20there%20have%20been%20many%20changes%20to%20Microsoft%20Sentinel%20in%20this%20time%20and%20the%20updates%20found%20here%20should%20not%20be%20considered%20exhaustive.%20To%20keep%20up%20to%20date%20with%20all%20the%20new%20features%20being%20released%20in%20Microsoft%20Sentinel%2C%20make%20sure%20you%20regularly%20monitor%20our%20%3CA%20href%3D%22https%3A%2F%2Faka.ms%2Fasnew%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ewhat's%20new%20page%3C%2FA%3E.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CH2%20id%3D%22toc-hId--379137742%22%20id%3D%22toc-hId--355273297%22%3EMicrosoft%20Sentinel%20Ninja%20Training%20Certification%3C%2FH2%3E%0A%3CP%3EAn%20important%20update%20to%20the%20training%20is%20the%20release%20of%20the%20Microsoft%20Sentinel%20Ninja%20Training%20knowledge%20check.%20This%20has%20already%20been%20announced%20in%20a%20separate%20blog%20post%20but%20for%20completeness%20it%20has%20also%20been%20included%20in%20this%20update%20post.%20You%20can%20take%20the%20%3CA%20href%3D%22https%3A%2F%2Fforms.office.com%2Fr%2FHWc2gvd4HD%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Eknowledge%20check%3C%2FA%3E%20and%20if%20you%20score%20over%2080%25%2C%20you%20can%20fill%20in%20the%20%3CA%20href%3D%22https%3A%2F%2Fforms.office.com%2Fr%2FZCrqFiktgy%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Eself-attestation%20form%3C%2FA%3E%20to%20receive%20an%20Microsoft%20Sentinel%20Ninja%20Training%20certification.%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CEM%3ENote%3A%20it%20can%20take%20up%20to%20one%20business%20day%20for%20you%20to%20receive%20your%20certificate%20via%20email.%3C%2FEM%3E%20%26nbsp%3B%20%26nbsp%3B%20%26nbsp%3B%20%26nbsp%3B%20%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CH2%20id%3D%22toc-hId-1931980402%22%20id%3D%22toc-hId-2108375091%22%20id%3D%22toc-hId-2132239536%22%3ENew%20and%20updated%20modules%26nbsp%3B%3C%2FH2%3E%0A%3CP%3ENew%20modules%20that%20cover%20new%20functionality%20areas%20in%20Microsoft%20Sentinel%3A%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3EModule%20X%3A%20Migration%3C%2FLI%3E%0A%3CLI%3EModule%20Y%3A%20Notebooks%3C%2FLI%3E%0A%3CLI%3EModule%20Z%3A%20ASIM%20and%20Normalization%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSPAN%3EAlso%2C%20several%20modules%20have%20been%20expanded%3A%3C%2FSPAN%3E%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3E%3CSPAN%3EModule%203%3A%20Workspace%20and%20tenant%20architecture%20-%20expanded%20to%20cover%20more%20MSSP%2Fmulti-tenant%20scenario%20guidance.%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3EModule%204%3A%20Data%20collection%20-%20expanded%20to%20cover%20the%20Azure%20Monitor%20Agent%20(AMA).%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3EModule%208%3A%20Analytics%20-%20expanded%20to%20cover%20SOC-ML%20anomalies%20and%26nbsp%3BFusion%20ML%20Detections%20with%20Scheduled%20Analytics%20Rules.%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3EModule%2011%3A%20Use%20cases%20and%20solutions%20-%20added%20content%20about%20the%20Solutions%20gallery.%3C%2FLI%3E%0A%3CLI%3EModule%2012%3A%20Handling%20incidents%20-%20covers%20Teams%20integration%20with%20Sentinel.%3C%2FLI%3E%0A%3CLI%3EModule%2013%3A%20Hunting%20-%20updated%20to%20reflect%20the%20new%20hunting%20dashboard.%26nbsp%3B%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CH2%20id%3D%22toc-hId-124525939%22%20id%3D%22toc-hId-300920628%22%20id%3D%22toc-hId-324785073%22%3ENew%20and%20updated%20webinars%3C%2FH2%3E%0A%3CUL%3E%0A%3CLI%3EModule%204%3A%20Data%20collection%20-%20a%20new%20webinar%20covering%20data%20collection%20scenarios.%3C%2FLI%3E%0A%3CLI%3EModule%205%3A%20Log%20Management%20-%20a%20new%20webinar%20that%20covers%20%3CSPAN%3Eusing%20Azure%20Data%20Explorer%20for%20long-term%20retention%20of%20Microsoft%20Sentinel%20logs.%3C%2FSPAN%3E%3C%2FLI%3E%0A%3CLI%3E%3CSPAN%3E%3CSPAN%3EModule%2015%3A%26nbsp%3B%3C%2FSPAN%3E%3C%2FSPAN%3EMonitoring%20Azure%20Sentinel's%20health%20-%20a%20new%20webinar%20that%20covers%20c%3CSPAN%3Eost%20management%20in%20Microsoft%20Sentinel.%3C%2FSPAN%3E%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CH2%20id%3D%22toc-hId--1506533835%22%20id%3D%22toc-hId--1482669390%22%3E%26nbsp%3B%3C%2FH2%3E%0A%3CH2%20id%3D%22toc-hId-124525939%22%20id%3D%22toc-hId-980978998%22%20id%3D%22toc-hId-1004843443%22%3EMicrosoft%20Sentinel%20webinars%20coming%20soon%3C%2FH2%3E%0A%3CUL%3E%0A%3CLI%3ELearn%20About%20Customizable%20Anomalies%20and%20How%20to%20Use%20Them%20-%20Sept%2014%3C%2FLI%3E%0A%3CLI%3EMicrosoft%20Sentinel%20%7C%20What's%20New%20in%20the%20Last%206%20Months%20-%20Sept%2015%3C%2FLI%3E%0A%3CLI%3ETurbocharging%20ASIM%3A%20Making%20Sure%20Normalization%20Helps%20Performance%20Rather%20Than%20Impacting%20It%20-%20Oct%206%3C%2FLI%3E%0A%3CLI%3ESAP%20Mini-Series%20Part%201%3A%20Introduction%20to%20Monitoring%20SAP%20with%20Microsoft%20Sentinel%20for%20Security%20Professionals%20-%20Oct%2018%3C%2FLI%3E%0A%3CLI%3EExplore%20the%20Power%20of%20Threat%20Intelligence%20in%20Azure%20Sentinel%20-%2025%20Oct%3C%2FLI%3E%0A%3CLI%3EWhat%E2%80%99s%20New%20in%20Microsoft%20Sentinel%20Automation%20-%20Oct%2028%3C%2FLI%3E%0A%3CLI%3ESAP%20Mini-Series%20Part%202%3A%20Deep%20Dive%20-%20End-to-End%20Installation%20of%20SAP%20for%20Azure%20Sentinel%20-%20Nov%209%3C%2FLI%3E%0A%3CLI%3EDecrease%20Your%20SOC%E2%80%99s%20MTTR%20(Mean%20Time%20to%20Respond)%20by%20Integrating%20Microsoft%20Sentinel%20with%20Microsoft%20Teams%20-%20Nov%2010%3C%2FLI%3E%0A%3CLI%3ECreate%20Your%20Own%20Microsoft%20Sentinel%20Solutions%20-%20Nov%2016%3C%2FLI%3E%0A%3CLI%3EEverything%20You%20Ever%20Wanted%20to%20Know%20About%20Using%20the%20New%20Azure%20Monitor%20Agent%20(AMA)%20with%20Microsoft%20Sentinel%20-%20Nov%2022%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CFONT%3EYou%20can%20sign%20up%20for%20webinars%20%3CA%20href%3D%22https%3A%2F%2Faka.ms%2FSecurityWebinars%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehere%3C%2FA%3E.%20Please%20note%20that%20the%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3E%3CSTRONG%3Eregistration%20links%3C%2FSTRONG%3E%3CSPAN%3E%26nbsp%3B%3C%2FSPAN%3Ewill%20be%20made%20available%20approximately%20two%20weeks%20before%20the%20webinar.%20Until%20then%2C%20all%20dates%20are%20tentative.%3C%2FFONT%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-TEASER%20id%3D%22lingo-teaser-2677688%22%20slang%3D%22en-US%22%3E%3CP%3EYes%2C%20it's%20that%20time%20of%20year%20-%20time%20for%20an%20update%20to%20the%20Microsoft%20Sentinel%20Ninja%20training!%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20image-alt%3D%22ninjapost.png%22%20style%3D%22width%3A%20999px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F308225iA16B5681FA42DC01%2Fimage-size%2Flarge%3Fv%3Dv2%26amp%3Bpx%3D999%22%20role%3D%22button%22%20title%3D%22ninjapost.png%22%20alt%3D%22ninjapost.png%22%20%2F%3E%3C%2FSPAN%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%3C%2FLINGO-TEASER%3E%3CLINGO-LABS%20id%3D%22lingo-labs-2677688%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EDetection%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EHunting%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EInvestigation%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMicrosoft%20Sentinel%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ESecurity%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EVAST%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E
Version history
Last update:
‎Nov 03 2021 04:02 AM
Updated by: