User Profile
Valon_Kolica
Former Employee
Joined 7 years ago
User Widgets
Recent Discussions
New Blog post: Looking for Anomalies in your IoT Asset Telemetry
When operating an IoT solution, you have to predict and identify operational malfunction and security issues in your IoT fleet. Using Time Series analysis to surface anomalies on IoT device telemetry data described on this blog, you will be able to enhance your control over your IoT solution.Feedback Opportunity: Securing IoT devices across IT and OT environment
Here you have an opportunity to help our Azure Defender for IoT team with feedback. From their team: We in Azure Defender for IoT team are working on building a comprehensive, unified solution for securing IoT devices across IT and OT environments. This solution provides an extent of features and tools dedicated to explore, contextualize and protect unmanaged device. For more details, visit our website: https://azure.microsoft.com/en-us/services/azure-defender-for-iot/ Criteria: Customers with more than 100 employees or Partners managing customers in this scale. Preferably customers with both IT and OT environments. Please use this 5-minute survey to provide your insight and priorities when it comes to IoT security. Survey Link: https://aka.ms/AAaw2g3 We would love to hear your thoughts as soon as possible; your timely response is much appreciated!Azure Security Center for IoT Webinar: End-to-End Security
Discover how you can implement end-to-end security for your IoT solution: from your devices, to the edge, and to IoT Hub. Monitor the health of your IoT devices in near real-time. Find and eliminate threats and manage your security posture using ASC for IoT. The webinar will take place on November 19, 2019. Details and registration at https://aka.ms/SecurityWebinars.SEP 26, 2023 | Ask-Me-Anything | Azure Firewall, Azure WAF and Azure DDoS
UPDATED, post-AMA: Here is the AMA recording in case you missed the live session. ************************************************************* Please join us in this Ask Me Anything session with the Azure Network Security CxE PM team. During this session, the Azure Network Security SME (Subject Matter Experts), will answer your questions on Azure Firewall, Azure Firewall Manager, Azure Web Application Firewall and Azure DDoS. This will be a great forum for our Public Community members to learn, interact and have their feedback listened to by the Azure Network Security team. Feel free to post your questions about Azure Network Security solution areas anytime in the comments before the event starts. The team will be answering questions during the live session, with priority given to the pre-submitted questions from the comments below. If you are new to Microsoft Tech-Community, please follow the sign-in instructions. To register for the upcoming live AMA Sep 26, 2023, visit aka.ms/SecurityCommunity. Mohit_Kumar andrewmathu SaleemBseeu davidfrazee ShabazShaik tobiotolorin gusmodenaAzure Sentinel: Common Event Format (CEF) Connectors Update | PREVIEW
Azure Sentinel allows you to connect any on-premises appliance that supports Common Event Format over Syslog to Azure Sentinel. Sentinel team has been working on improving this capability and are excited to release an improved connector that simplifies the onboarding configuration steps and reduced common configuration issues. This preview will expose new connectors and effect all the data connectors that are implemented using CEF: Zscaler – new Common Event Format (CEF) Check Point Cisco ASA F5 Fortinet Palo Alto Networks Interested in participating? If you're committed to participating, please leverage this form to sign-up.Azure Sentinel Webinar: Threat Hunting
Interested in going threat hunting with Azure Sentinel? Check out our upcoming webinar. Details and registration at https://aka.ms/AzureSentinelWebinar. The webinar will take place on Wednesday, September 18, 2019 at 09:00 PT / 12:00 ET / 16:00 GMT. Afterward, we will post recordings of the webinar at https://aka.ms/AzureSentinelRecordings. To stay informed about future webinars and other events, join our Security Community at https://aka.ms/SecurityCommunity.November Azure Sentinel Webinars!
We have two upcoming Azure Sentinel webinars in November. Please join us! Azure Sentinel, Microsoft’s new cloud-native SIEM, offers innovation alongside strong fundamentals. Based on the Azure ecosystem, it provides a lot more than you notice if you merely touch the surface. Post-Ignite Deep Dive - November 13, 2019 In this webinar, we will get deeper into Sentinel functionality, such as ML, rules writing, investigation, hunting, and explaining the new features introduced in Microsoft Ignite. Cloud & On-Premises Architecture - November 20, 2019 In this Webinar, we will cover the design of on-prem collection infrastructure, support for multiple azure tenants and subscriptions, for example, for MSSPs and multinationals, and integration with 3rd party systems. Details and registration at https://aka.ms/SecurityWebinars.Two interesting Azure Sentinel blogs available now!
Two interesting Azure Sentinel blogs available now: Hunting for Capital One Breach TTPs in AWS logs using Azure Sentinel - Part II Correlation rules: Active Lists out; makelist() in, the AAD/AWS correlation example Expand your Microsoft Security knowledge by joining our public community with webinar access at aka.ms/SecurityCommunity. If you missed the webinars, the recordings are available at aka.ms/SecurityWebinars.February 2020 | Azure Sentinel public webinars
Interested in broadening your Azure Sentinel knowledge, check out our upcoming webinars: Feb 12 at 08:00 PT | Deep Dive on Correlation Rules Feb 19 at 09:00 PT | Tackling Identity with Azure Sentinel For details and registration please visit us at https://aka.ms/SecurityWebinars.Now Public | Azure Sentinel - STIX TAXII Data Connector
Azure Sentinel lets you import the threat indicators your organization is using, which can enhance your security analysts' ability to detect and prioritize known threats. Several features from Azure Sentinel then become available or are enhanced: Analytics includes a set of scheduled rule templates you can enable to generate alerts and incidents based on matches of log events from your threat indicators. Workbooks provide summarized information about the threat indicators imported into Azure Sentinel and any alerts generated from analytics rules that match your threat indicators. Hunting queries allow security investigators to use threat indicators within the context of common hunting scenarios. Notebooks can use threat indicators when you investigate anomalies and hunt for malicious behaviors. Now, in public preview, You can stream threat indicators to Azure Sentinel by connecting to TAXII servers. To find out more about this feature, you can reference our Public Documentation.Azure Sentinel in Azure Gov NOW GA!
We wanted to make you aware that Azure Sentinel in Azure Gov is now GA as of March 13, 2020. Below you will find key resources and announcements: Public Documentation Important Update: On April 1, 2020, charges for Azure Sentinel Gov will go into effect. Click to learn more about Azure Sentinel pricing.
