دسترسی نامحدود
برای کاربرانی که ثبت نام کرده اند
دانلود کتاب Microsoft Unified XDR and SIEM Solution Handbook
دانلود کتاب راهنمای راه حل Microsoft Unified XDR و SIEM
مشخصات کتاب
Microsoft Unified XDR and SIEM Solution Handbook
ویرایش: [1 ed.]
نویسندگان: Raghu Boddu and Sami Lamppu
سری:
ISBN (شابک) : 9781835086858
ناشر: Packt Publishing Pvt Ltd
سال نشر: 2024
تعداد صفحات: 499
زبان: English
فرمت فایل : EPUB (درصورت درخواست کاربر به PDF، EPUB یا AZW3 تبدیل می شود)
حجم فایل: 15 Mb
قیمت کتاب (تومان) : 45,000
در صورت تبدیل فایل کتاب Microsoft Unified XDR and SIEM Solution Handbook به فرمت های PDF، EPUB، AZW3، MOBI و یا DJVU می توانید به پشتیبان اطلاع دهید تا فایل مورد نظر را تبدیل نمایند.
توجه داشته باشید کتاب راهنمای راه حل Microsoft Unified XDR و SIEM نسخه زبان اصلی می باشد و کتاب ترجمه شده به فارسی نمی باشد. وبسایت اینترنشنال لایبرری ارائه دهنده کتاب های زبان اصلی می باشد و هیچ گونه کتاب ترجمه شده یا نوشته شده به فارسی را ارائه نمی دهد.
توضیحاتی درمورد کتاب به خارجی
فهرست مطالب
Microsoft Unified XDR and SIEM Solution Handbook
Foreword
Contributors
About the authors
About the reviewers
Content contributors
Preface
Who this book is for
What this book covers
Conventions used
Get in touch
Share Your Thoughts
Download a free PDF copy of this book
Case Study – High Tech Rapid Solutions Corporation
Introduction
The current environment
A cloud environment
A hybrid cloud architecture
User entities
Collaboration with partners
End user devices
Server infrastructure
An application landscape
An IoT/OT environment
Security challenges
Management concerns
Challenges emphasized by security teams
Concerns raised by CISO
A recent incident response case
Summary
Part 1 – Zero Trust, XDR, and SIEM Basics and Unlocking Microsoft’s XDR and SIEM Solution
1
Introduction to Zero Trust
Zero Trust and its history
Why do we need Zero Trust?
Zero Trust in security operations
Zero Trust principles and architecture
Zero Trust pillars
A real-life example
Case study analysis
Future of Zero Trust
Summary
Further reading
2
Introduction to XDR and SIEM
Understanding XDR and SIEM
What is XDR and how did it start?
What is SIEM and how did it start?
How does a SIEM solution work?
What do these *DR acronyms mean?
The benefits of having XDR and SIEM solutions in an enterprise
XDR’s benefits and reasons to adopt it
Why do we need to consider SIEM?
How to choose the right XDR and SIEM tool
Case study analysis
Summary
Further reading
3
Microsoft’s Unified XDR and SIEM Solution
What is Microsoft’s unified XDR and SIEM solution?
Microsoft Defender XDR
Microsoft Defender for Cloud
Microsoft Sentinel
Other relevant Microsoft Security solutions
Microsoft Defender XDR overview (MDE, MDO, MDA, and MDI)
Microsoft Defender XDR solutions
MDE
MDO
MDA
MDI
Microsoft Entra ID Protection (formerly Azure AD Identity Protection)
Use cases for Entra ID Protection
Case study analysis
Extending XDR capabilities to on-premises and hybrid cloud by leveraging MDC
MDC key features
Benefits of using unified XDR for on-premises, multi-cloud, or hybrid cloud scenarios
Case study analysis
Microsoft Sentinel – SIEM and SOAR
Sentinel key features
Microsoft Sentinel versus Microsoft Defender XDR
Case study analysis
XDR and beyond – exploring commonly used security solutions
Microsoft Defender for IoT
EASM
MDTI
Microsoft Copilot for Security
Case study analysis
Microsoft’s unified XDR and SIEM solution's benefits over non-MS solutions
The future – Microsoft’s influence in cybersecurity
The graphical Windows OS revolution
Reshaping server technology with Windows NT
Outlook and the transformation of email communication
MS Office – standard in productivity software
Internet Explorer – a chapter in web browsing
The future – Microsoft’s rising influence in cybersecurity
Summary
Further reading
Part 2 – Microsoft’s Unified Approach to Threat Detection and Response
4
Power of Investigation with Microsoft Unified XDR and SIEM Solution
Understanding the basics of SOC
Typical SOC roles
Avengers of cybersecurity
Traditional versus modern SOC operations
SOC journey with Microsoft’s unified security operations platform
Investigation in Microsoft Sentinel
Investigation in Microsoft Defender XDR
Microsoft Copilot for Security
Integrations with other Microsoft security solutions and third-party tools
Microsoft Defender XDR platform – Single pane of glass
Microsoft Sentinel
Third Party integrations
Case study analysis
Summary
Further reading
5
Defend Attacks with Microsoft XDR and SIEM
An attack kill chain in XDR and SIEM
Identity threat detection and response
Microsoft Defender XDR’s automatic attack disruption
An overview of Microsoft Defender XDR’s automatic attack disruption
Automatic attack disruption key stages
Deception capability in Microsoft Defender XDR
Attack scenarios
An identity-based supply chain attack in the cloud
Business Email Compromise attack
Human-Operated Ransomware
A case study analysis
Summary
Further reading
6
Security Misconfigurations and Vulnerability Management
Introduction to security misconfigurations and vulnerabilities
Security misconfigurations
Vulnerabilities
Vulnerability management framework
How can Microsoft’s unified solution help to address this?
Microsoft Defender Vulnerability Management
Microsoft Defender for Cloud
Microsoft Sentinel
Microsoft Copilot for Security
Integration with other tools
ServiceNow integration
Intune/MDE remediation (native integration capability)
API integrations and automation
Case study analysis
Summary
Further reading
7
Understanding Microsoft Secure Score
What is Microsoft Secure Score?
Why do we need to monitor Secure Score?
Azure secure score in MDC
Identity secure score in Entra ID
Microsoft Secure Score in Microsoft Defender XDR
Understanding your score – how are scores calculated?
How to assess and improve findings
Addressing findings
Integrations
MDC secure score
Microsoft Secure Score
Case study analysis
Summary
Further reading
Part 3 – Mastering Microsoft’s Unified XDR and SIEM Solution – Strategies, Roadmap, and the Basics of Managed Solutions
8
Microsoft XDR and SIEM Implementation Strategy, Approach, and Roadmap
XDR and SIEM assessment and implementation strategy
Security assessments
Security strategies
Implementation approach and roadmap
Adoption order
What’s next?
Case study analysis
Summary
Further reading
9
Managed XDR and SIEM Services
Managed services overview
Security services
How to select a provider
Pros and cons of using managed services
Generic MSSP framework in the Microsoft ecosystem
Azure Lighthouse
Microsoft Entra ID
Multi-tenant management in Microsoft Defender XDR
Content management in an MSSP scenario
Case study analysis
Summary
Further reading
10
Useful Resources
Microsoft Unified XDR and SIEM Solution resources
Microsoft Defender XDR
Microsoft Sentinel
Microsoft Defender for Identity
Microsoft Defender for Office
Microsoft Defender for Endpoint
Microsoft Defender for Cloud Apps
Microsoft Defender for Cloud
Non-Microsoft XDR and SIEM solutions
XDR solutions
SIEM solutions
Managed XDR and managed SOC providers
Cybersecurity Industry Reports 2023
Community and third-party resources
Some of the blogs
Training
Community tools and GitHub resources
Books
Security shows
LinkedIn groups
Thank you
Index
Why subscribe?
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts
Download a free PDF copy of this book
نظرات کاربران
کتاب های تصادفی
دانلود کتاب Statistical Methods in Food and Consumer Research
دانلود کتاب Pioneers of Eagle Rock
دانلود کتاب The Army Command Post and Defense Reshaping 1987-1997
دانلود کتاب Surprise at the intersection of phenomenology and linguistics
