Deployment of Azure Sentinel All In One by Sanyam JainDeployment of Azure Sentinel All In One by Sanyam Jain

Deployment of Azure Sentinel All In One

Sanyam Jain

Sanyam Jain

Cloud Security Engineer

Security Engineer

Cybersecurity Specialist

Azure

Azure

✅ Creates resource group (if given resource group doesn't exist yet) ✅ Creates Log Analytics workspace (if given workspace doesn't exist yet) ✅ Installs Azure Sentinel on top of the workspace (if not installed yet) ✅ Enables selected Data Connectors from tihs list: ⭐️ Azure Activity ⭐️ Azure Security Center ⭐️ Azure Active Directory Identity Protection ⭐️ Office 365 (Sharepoint, Exchange and Teams) ⭐️ Microsoft Cloud App Security ⭐️ Azure Advanced Threat Protection ⭐️ Microsoft Defender Advanced Threat Protection ⭐️ Security Events ⭐️ Linux Syslog ⭐️ DNS (Preview) ⭐️ Windows Firewall ✅ Enables analytics rules for selected Microsoft 1st party products ✅ Enables Fusion rule and ML Behavior Analytics rules for RDP or SSH (if Security Events or Syslog data sources are selected) ✅ Enables Scheduled analytics rules that apply to all the enabled connectors
Like this project

Posted Feb 17, 2025

✅ Deploys Azure Sentinel, Log Analytics, & resource group. Enables key data connectors, analytics, Fusion, ML rules, and scheduled detections for security.

Likes

0

Views

0

Tags

Cloud Security Engineer

Security Engineer

Cybersecurity Specialist

Azure

Azure

Sanyam Jain

Sanyam Jain

Cloud Security

DevSecOps as a Service - AWS/GCP/Azure/Oracle
DevSecOps as a Service - AWS/GCP/Azure/Oracle
HIPAA, ISO 27001, SOC 2,PCI-DSS compliant AWS configuration
HIPAA, ISO 27001, SOC 2,PCI-DSS compliant AWS configuration