Microsoft Defender for Cloud Apps SIEM integration
Learn how to connect Microsoft Sentinel and other SIEM solutions to Microsoft Defender for Cloud Apps.
Learning objectives
In this module, you will:
- Connect Microsoft Sentinel to Microsoft Defender for Cloud Apps
- Enrich incidents in Microsoft Sentinel with playbooks
- Triage infrequent country/region requests with Microsoft Defender for Cloud Apps and Microsoft Sentinel
- Connect a non-Microsoft security information and event management solution to Microsoft Defender for Cloud Apps
Prerequisites
- Experience working with Microsoft 365 services
- Experience working with Azure
- Experience working with Microsoft Sentinel
- Knowledge of security concepts, risks, and mitigations
- Microsoft Defender for Cloud Apps intermediate or equivalent