Do you have an effective monitoring capability for your cloud assets? Can you detect and respond to an incident on cloud with the same rigor as you do it on-prem? If not, then this is a perfect session. The talk will share a step-by-step approach to building a robust security monitoring capability for your cloud, including architecture, alerts and events, use cases, skills required and workflow.
1: Understand architecture for monitoring multiple cloud subscriptions and resources centrally.
2: Understand specific cloud events required for building use cases and conducting investigation.
3: Take away a set of specific monitoring use cases for cloud and our experience building them.
Basic understanding of concepts around cloud computing. Basic understanding of SOC and incident management. Basic understanding of SIEM solutions. Basic understanding of common threat vectors.
Principal Security Engineering Manager, Microsoft
Analytics Intelligence & Response
Share With Your Community