Microsoft Sentinel: Zero to Hero – Complete SIEM Training

Course Overview

• Course Title: Microsoft Sentinel: Zero to Hero – Complete SIEM Training
• Instructor: Cyber talents
• Target Audience:
  • Beginners
  • SOC analysts
  • Cybersecurity engineers
  • Anyone looking to break into or upskill in cloud security operations
• Prerequisites:
  • Very Basic understanding of cybersecurity concepts
  • A free or trial Microsoft Azure account for practicing in real environments

Curriculum Highlights

• Key Topics Covered:
  • Fundamentals of Microsoft Sentinel and cloud-native SIEM architecture
  • Setting up Microsoft Sentinel from scratch using real Azure environments
  • Creating and fine-tuning Analytics Rules (Scheduled, NRT, Fusion, ML-based)
  • Threat hunting using KQL with real-world scenarios
  • Integrating Threat Intelligence feeds and adding IOCs into Sentinel
  • Building and automating incident response using Playbooks and Azure Logic Apps
  • Visualizing alerts and security metrics using Workbooks
  • Comparing traditional vs. cloud-native SIEMs
  • Hands-on experience with labs, real use cases, and SOC workflows
• Key Skills Learned:
  • Setting up and configuring Microsoft Sentinel from scratch in Azure
  • Ingesting data using connectors
  • Creating powerful analytics rules
  • Writing and using KQL queries for threat hunting
  • Building playbooks and automating incident response with Logic Apps
  • Visualizing attacks using Workbooks
  • Understanding the difference between traditional and cloud-native SIEMs

Course Format

• Duration: 9 hours on-demand video
• Format: Self-paced online course
• Resources:
  • 1 article
  • 1 downloadable resource
  • Access on mobile and TV
  • Certificate of completion