SIEM/SOAR on Azure Sentinel: 6-Week Implementation

Infopulse, as a Microsoft partner with Azure Expert MSP, Gold Security statuses and advanced specialization in Threat Protection, can help you adopt Azure Sentinel with maximum benefit. Our specialists have experience with multiple security projects across industries and are capable of adjusting the solution to specific business needs.

Azure Sentinel implementation will show you the power of a cloud-based SIEM/SOAR solution and provide you with advanced tools for alert detection, threat visibility, proactive hunting, and threat response.

Agenda includes the following key steps:

• Running a security workshop to provide an overview of Azure Sentinel capabilities and understand the company’s business objectives.
• Conducting a comprehensive assessment to define the state of the current security setup and choose the most suitable implementation scenario.
• Deploying a pilot SIEM/SOAR project.
• Setting up analytic use cases to validate Azure Sentinel capabilities.
• Configuring security automation and orchestration rules to increase systems’ efficiency.
• Enabling integration with Power BI for intelligent report generation.
• Reporting on results.

Deliverables:

• Comprehensive security workshop.
• End-to-end security assessment with recommendations for improvement.
• Deployed and setup Azure Sentinel solution.
• Configured reporting for SIEM/SOAR.
• Knowledge transfer.

Core tools, solutions, and services to be used:

• Azure Sentinel
• Azure Logic Apps
• Azure Blob Storage
• Azure Security Center
• Azure Key Vault
• Azure Functions
• Azure Defender
• Microsoft Defender for Endpoint
• Microsoft Defender for Office 365
• Microsoft Defender for Identities
• Microsoft Cloud Application Security
• Microsoft Power BI

Note: the estimated price does not include Azure and Microsoft 365 licenses.

Our SIEM/SOAR on Azure Sentinel: 6-Week Implementation is available globally.

For more information visit: https://www.infopulse.com/