We are currently working on enhancing our Azure Sentinel analytics capabilities, specifically focusing on Cisco switches. Your insights and experiences are invaluable, and we would love to hear from you regarding use cases and queries related to Cisco switch data in Azure Sentinel.

I'm looking for:

• Use cases involving Cisco switches (e.g., security events, network anomalies, etc.)
• Queries or Kusto Query Language (KQL) examples that you find particularly useful for analyzing Cisco switch logs in Azure Sentinel.

Can anyone help?