TMW12 A Day in the Life of a Microsoft Sentinel Analyst


8:00am - 9:15am

Level: Advanced

Rod Trent

Senior Cloud Security Advocate and Global Microsoft Sentinel SME,


You may know how to use Microsoft Sentinel to ingest your log files and allow the system to work its magic in creating alerts and Incidents for investigations. But, wouldn't it be nice to get a real feel for how this product will impact your daily life and your organization in a positive manner? In this session, we bring it all together and provide real-world examples through a standard SOC workflow - applying each Microsoft Sentinel feature to each step in the workflow process. You are the star. We simply provide the script so you picture yourself as the top Microsoft Sentinel analyst on your team.

You will learn:

  • How to build a process for managing security tasks daily, weekly, and monthly
  • About assigning proper duties to the right skillsets
  • How to use Microsoft Sentinel effectively and efficiently to protect the environment from attack