Choose the approach that’s best for you
Every organization is different, so this workshop can be customized to fit your environment and goals. We can provide either of two scenarios:
If your organization doesn’t have its own security operations center (SOC) or if you want to offload some monitoring tasks, we will demonstrate how BUI can perform remote monitoring and threat hunting for you.
Joint threat exploration
If your organization is interested in learning how to integrate Azure Sentinel in your existing SOC by replacing or augmenting an existing SIEM, we will work with your SecOps team and provide additional readiness to bring them up to speed.
“With everything running through Azure Sentinel, we’ve reduced the time spent on case management and resolution of alerts by approximately 50 percent”Stuart GreggCyber Security Operations Lead, ASOS
Through this workshop, we will work with you to:
In addition, depending on the selected scenario, you will also:
Experience the benefits of a managed monitoring with a true cloud native SIEM, managed and monitored by your cybersecurity experts. (Remote Monitoring scenario)
Receive hands-on experience, learn how to discover and analyze threats using Azure Sentinel and how to automate your Security Operations to make it more effective. (Joint Threat Exploration scenario)
What we’ll do
Analyze your requirements and priorities for a SIEM deployment
Define scope & deploy Azure Sentinel in your production environment
Remote monitoring* and proactive threat hunting to discover attack indicators
Discover threats and demonstrate how to automate responses
Recommend next steps on how to proceed with a production implementation of Azure Sentinel