Use Search jobs in Microsoft Sentinel
Intermediate
Security Operations Analyst
Azure
Microsoft Sentinel
In Microsoft Sentinel, you can search across long time periods in large datasets by using a search job.
Learning objectives
After completing this module, you'll be able to:
- Use Search Jobs in Microsoft Sentinel
- Restore archive logs in Microsoft Sentinel
Prerequisites
Basic knowledge of operational concepts such as KQL, logging, and archiving
Get started with Azure
Choose the Azure account that's right for you. Pay as you go or try Azure free for up to 30 days. Sign up.