Azure Sentinel Quickstart: 1 Day Implementation

Insight Technology Solutions

Insight's Azure Sentinel Quickstart provides the customer with a configured Azure Sentinel platform on which they can perform their own security analytics function.

This Azure Sentinel Quickstart service provides a fixed price, fixed scope implementation of the Microsoft Sentinel SIEM/SOAR (Security Orchestration, Automation, and Response) platform. It is designed to provide the initial set up of the platform, the pre-requisite log analytics workspace, and a default set of data connectors to enable ingestion of a basic set of Microsoft log sources. There is also the option to ingest other log sources however this would be subject to additional cost. On completion of this module, you will have a configured Sentinel platform on which you can perform your own security analytics function.

Business outcomes

See and stop threats before they cause harm with Insight Microsoft Sentinel Quickstart. Azure Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response.

Speedy and cost effective deployment: • Be up and running within a day with an the initial set of logs • No need to order hardware or pay for lengthy consultancy engagements

Focus on security, unburden SecOps from IT tasks: • No infrastructure setup or maintenance • SIEM Service available in Azure portal • Scale automatically, put no limits to compute or storage resources • Respond rapidly with built in automation and orchestration

Reduce security and IT costs with a cost-effective SIEM: • No infrastructure costs, only pay for what you use • Bring your Office 365 Data for free • Predictable Billing with capacity reservations • Flexible model, no annual commitments

Collect security data at cloud scale from all sources across your enterprise: • Pre-wired integration with Microsoft solutions • Connectors for many Microsoft partner solutions • Standard log format support for all sources • Machine Learning (ML) models based on decades of Microsoft security experience and learnings and your own Threat Intelligence • Millions of signals filtered to few correlated and prioritised incidents • Get prioritised alerts and automated expert guidance • Visualise the entire attack and its impact • Hunt for suspicious activities using pre-built queries and Azure Notebooks