Microsoft Defender Weekly Wrap - Issue #38
Happy Friday all! As we enter into another weekend, I'm just getting back into the office from a very successful TechMentor conference at the Microsoft campus in Redmond.
I delivered two sessions on Microsoft Sentinel, and both went off without a hitch. On Tuesday it was "A Day in the Life of a Sentinel Analyst." On Wednesday, I started the day with "Using Microsoft Sentinel and Microsoft Teams as a SOC War Room."
The "Day in the Life..." is always different, though I've delivered this concept before. I keep updating it to include all the new features we roll out constantly.
The SOC War Room is a new topic and could be the first of its kind. But it was so well received I'll be building this out for much broader distribution and delivery. This session talks about using Microsoft Sentinel to identify when a war room is necessary and then using the magic of Microsoft Teams to connect the right people virtually. It also goes into the various roles and skillsets required for each type of War Room situation.
This is an awesome conference and I'll have more to share once I've had time to decompress.
...
Thanks, as always, for your continued support and engagement around the Microsoft Security products!
Talk soon.
-Rod
Things to Attend
Stop Ransomware with Microsoft Security 2022 - Home - Home — msthreatintelligencedigitalevent.eventcore.com
Register for the Stop Ransomware with Microsoft Security digital event to watch in-depth demos of the latest threat intelligence technology. Thursday, September 15, 2022, 9:00 AM – 10:30 AM Pacific Time (UTC-7)
Things in the News
In our 20-criterion evaluation of endpoint detection and response providers, we identified the 15 most significant ones — Bitdefender, BlackBerry Cylance, Check Point Software Technologies, CrowdStrike, Cybereason, Elastic, FireEye, Fortinet, McAfee, Microsoft, Palo Alto Networks, SentinelOne, Sophos, Trend Micro, and VMware Carbon Black — and researched, analyzed, and scored them. This report shows how each provider measures up and helps security professionals select the right one for their needs.
Defender for Cloud Things
VIDEO: Defender for Cloud in the Field - Out of Band Edition — www.linkedin.com
In this episode of Defender for Cloud in the Field - Out of Band Edition, Tom Janetscheck and I talk about the Vulnerability Assessment workbooks available in Defender for Cloud. Tom specifically covers a new VA workbook that is currently available in our GitHub repository.
Defender for Endpoint Things
BLOG: New Device Health Reporting for Microsoft Defender for Endpoint is now in Public Preview - Microsoft Tech Community — techcommunity.microsoft.com Your security team now has a comprehensive view of the health and security of your endpoints. We are excited to announce new additions and improvements to
Microsoft Defender for IoT Things
DOCS: What is a Defender for IoT committed device? — docs.microsoft.com
Defender for IoT can discover all devices, of all types, across all environments. Devices are listed in the Defender for IoT Device inventory pages based on a unique IP and MAC address coupling.
DOCS: Integrations with partner services - Microsoft Defender for IoT | Microsoft Docs — docs.microsoft.com Learn about supported integrations with Microsoft Defender for IoT.
Defender for Cloud Apps Things
DOCS: Microsoft Defender for Cloud Apps in Microsoft 365 Defender (Preview) | Microsoft Docs — docs.microsoft.com Learn about changes from the Microsoft Defender for Cloud Apps to Microsoft 365 Defender
BLOG: Protect sensitive SharePoint sites with Defender for Cloud Apps - Microsoft Tech Community — techcommunity.microsoft.com Protect sensitive SharePoint sites with Defender for Cloud Apps
Defender for Office Things
ARTICLE: Benefits of Using Microsoft Defender for Office 365 | by Novica Gijevski | Cybersecurity Science | Aug, 2022 | Medium — medium.com Any company using Office 365 should investigate in more detail what type of protection Microsoft offers. However, we’re here to tell you precisely what Microsoft Defender for Office 365 is and how it…
Microsoft Entra Things
BLOG: Microsoft Entra Verified ID now generally available - Microsoft Tech Community — techcommunity.microsoft.com As part of Microsoft’s mission to empower people and organizations to achieve more, we set out to discover a new approach to identity technologies . Our