Azure Sentinel SIEM
Microsoft Sentinel detection engineering, threat hunting, and SOC workflows.
Certification Roadmap
1Security Operations Foundation
Setting up the Azure security environment.
Azure Security Fundamentals
Azure Active Directory, Network Security Groups, Defender for Cloud
Understand the core security mechanisms within the Azure ecosystem before diving into SIEM.
Sentinel Workspace Deployment
Log Analytics, Data Connectors, Retention Policies
Configure the Log Analytics Workspace and connect data sources from Azure, AWS, and on-premises.
2Detection Engineering
Writing rules and hunting threats.
KQL Query Construction
Kusto Query Language, Parsing, Joins
Master KQL to proactively hunt for anomalies and write custom analytic rules.
Playbooks and Automation (SOAR)
Logic Apps, Automated Responses, Incident Triage
Build automated SOAR playbooks using Azure Logic Apps to respond to incidents instantly.
Ready to Master this Track?
Get training schedules, role-based pathways, and expert guidance for your certification journey. Our industry-recognized mentors will guide you from fundamentals to professional level.
Program Details
Duration
40 Hrs
Mode
Live (Online)
Experience Level
Intermediate