On this session we will talk about Azure Sentinel, the main features of a SIEM/SOAR system, how can we deploy it to our environment and connect it to multiple sources of data - Office365 security solutions, Azure security solutions or OnPrem - to collect data, events and alerts. From the collection of data and security events to the automation of responses and remediation.
Microsoft Azure MVP focusing on Microsoft Azure, Microsoft Office365 and SQL Server Administration, Azure DevOps. Strong expertise in Windows Networking Services, Virtualization and PowerShell. I am a long time IT Systems Engineer who has worked across many practices and disciplines in my career, with a primary focus on Microsoft-based Infrastructure solutions or Mixed-environments. At this point, I have got +25 years of experience managing Microsoft-based corporate infrastructure, ranging from 50 user shops all the way up to +1,000 user organizations. Currently, I am the Azure Tech Lead at Bizdirect where my work focus on helping our customer with Governance and solution designs for Azure and also hybrid environments. Former Senior IT Operations Analyst at Basecone (company part of the Wolters Kluwer Group) where my work focused on Azure DevOps, Octopus Deploy and AWS (particularly with CloudFormation, CI/CD and Automation). Previously, I worked as a Systems Engineer at DevScope where my work ranged the full Microsoft stack, from OnPrem services up to Azure, and solid exposure and knowledge around almost all of the core underlying technologies that support and power the core Microsoft Infrastructure stack.
Passionate about cloud computing and everything else it empowers, alongside identity and security. Regular speaker in Microsoft Portugal events as well as user group meetings and events, both national and international ones. Deep connection and partnership with Microsoft Portugal personnel. Regular trainer for Microsoft Portugal. The engagement with developers, architects and decision makers is a continuous everyday activity.
We seek to provide a respectful, friendly, professional experience for everyone, regardless of gender, sexual orientation, physical appearance, disability, age, race or religion. We do not tolerate any behavior that is harassing or degrading to any individual, in any form. The Code of Conduct will be enforced.
All live stream organizers using the Global Azure brand and Global Azure speakers are responsible for knowing and abiding by these standards. Each speaker who wishes to submit through our Call for Presentations needs to read and accept the Code of Conduct. We encourage every organizer and attendee to assist in creating a welcoming and safe environment. Live stream organizers are required to inform and enforce the Code of Conduct if they accept community content to their stream.
If you are being harassed, notice that someone else is being harassed, or have any other concerns, report it. Please report any concerns, suspicious or disruptive activity or behavior directly to any of the live stream organizers, or directly to the Global Azure admins at firstname.lastname@example.org. All reports to the Global admin team will remain confidential.
We expect local organizers to set up and enforce a Code of Conduct for all Global Azure live stream.
A good template can be found at https://confcodeofconduct.com/, including internationalized versions at https://github.com/confcodeofconduct/confcodeofconduct.com. An excellent version of a Code of Conduct, not a template, is built by the DDD Europe conference at https://dddeurope.com/2020/coc/.