How Microsoft Made Me Love SIEMs Again

Chris Maenner - How Microsoft Made Me Love SIEMs Again As a startup, it is difficult to hire (afford) experienced security engineers and analysts. Due to the pandemic, our company was further challenged to optimize our security team. Following the leadership of our Engineering department, our companies security team architected a serverless Cloud Infrastructure which allowed our company to be nimble and flexible. This shared responsibility model allowed our company to focus on growing the business and focus on customer happiness. Azure Sentinel Incident Response Platform is designed to consume, transform, and alert on serverless infrastructure by using serverless services. This platform is designed to alert on third-party cloud infrastructure that will help detect remote work force abuse, facility network abuse, and proactively identify systems that are misconfigured and remediate.