The Microsoft Sentinel Skills Course is a comprehensive training program designed to provide learners with the knowledge and skills needed to effectively use Microsoft Sentinel, a cloud-native Security Information and Event Management (SIEM) system. The course is intended for security professionals, IT administrators, and anyone responsible for monitoring and responding to security incidents in an organization.
The course begins with an introduction to Sentinel and its key features, followed by a deep dive into the Sentinel data model, query language, and analytics capabilities. Learners will also learn how to use Sentinel to detect and respond to security threats, configure data connectors, and automate incident response workflows.
Other topics covered in the course include threat hunting, incident investigation, creating custom alerts and workbooks, and managing Sentinel at scale. The course also covers best practices for configuring and managing Sentinel in a production environment.