![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 82%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVS%3C/text%3E%3C/svg%3E)
25,206 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 20%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Hi @Vinod Survase ,
Thanks for reaching out.
To identify risks for Microsoft 365 and Microsoft 365 Defender Suite of services using Sentinel, you can use the Microsoft 365 Defender connector for Microsoft Sentinel. This connector allows you to stream all Microsoft 365 Defender incidents into Microsoft Sentinel and keep them synchronized between both portals.
You can also use the threat intelligence capabilities in Microsoft Sentinel to identify risks. To do this, you can add entities to your threat indicator lists. These entities can include IP addresses, URLs, file hashes, and more. Once added, Sentinel will automatically search your logs for any matches to these indicators, allowing you to quickly identify potential risks.
Also, set up Microsoft eXtended detection and response (XDR) tool together with Microsoft Sentinel so that security operations teams can effectively remediate incidents and triage and respond to incidents effectively.
Reference - https://learn.microsoft.com/en-us/azure/sentinel/data-connectors/microsoft-defender-for-office-365
https://learn.microsoft.com/en-us/defender-cloud-apps/siem-sentinel
https://learn.microsoft.com/en-us/security/operations/siem-xdr-overview
Hope this will help.
Thanks,
Shweta
Please remember to "Accept Answer" if answer helped you.