Erin Dreisbach: To Launch a Successful Product, Use Smart Systems and a Human Touch
“We have a product life-cycle management (PLM) system that houses all the information people need to know about the product.” Erin Dreisbach’s most successful product launches were often under time constraints, but they also stand out in her memory because...
Shahab Siddiqui: You Need Good SOC Integration to Get the Most Out of Microsoft Defender
“From a security operations center (SOC) perspective Microsoft Defender for Endpoint is a great log source to collect endpoint status and activity data for analysis, alerting, and advanced threat hunting.” When deploying Microsoft Defender for Endpoint, you can...
Nirav Kumar: Customized Detections and Response Can Be a Challenge
“[Microsoft Defender for Endpoint] has good behavioral analytics and automatic detections that enable it to identify fileless malware quickly.” Microsoft Defender for Endpoint is an endpoint detection and response tool that captures endpoint telemetry and sends...
Rebecca Wynn: Getting the Most from Microsoft Defender for Endpoint Involves More Than Deployment
“A lot of the cost and value you see from these tools hinges on your ability to use them efficiently so that they deliver those returns day after day.” In addition to familiarizing yourself with Microsoft Defender for Endpoint (formerly Microsoft Defender...
Oscar Monge: Real-Time Vulnerability Reporting in Microsoft Defender for Endpoint
"The most challenging aspect of using Microsoft Defender for Endpoint is ongoing product oversight.” Good security depends on having consistent controls across the environment. Microsoft Defender for Endpoint is deployed as a series of agents on the endpoints...
Michael Kavka: Enroll One Machine and Test Everything
"There are many intricacies in the configurations and settings. Some of them may be important to you, and others may not.” As with any security product, before implementing Microsoft Defender for Endpoint, you must know what is in your environment. If you are...
Maarten Leyman: Automations Are Useful, but Implement Them with Care
“If the automation involves taking actions on critical production servers, you should review those actions before Microsoft Defender for Endpoint executes them.” The first step in implementing Microsoft Defender for Endpoint is to understand what the product does and...
James P. Courtney II: Microsoft Defender for Endpoint Protects Against Many Attack Vectors
“One big advantage of Microsoft Defender for Endpoint is its ability to automate many remediation functions so that you can respond much more quickly to alerts and events.” Microsoft Defender for Endpoint (formerly Microsoft Defender Advanced Threat Protection [ATP])...
Sharjeel Qayyum Khan: You Must Understand What You Want to Extract from Azure Sentinel
“The most challenging aspect of Azure Sentinel deployment is deciding what you need the system to tell you, and then configuring data collection and analytics so that you can extract that information.” Effective security monitoring and analysis require a security...
Rajesh Kumawat: Microsoft Azure Sentinel Is a Different Kind of SIEM System
“Azure Sentinel automatically performs the analytical work on alerts and provides a clear, straightforward presentation of the incident history and event relationships.” The most important part of implementing Microsoft Azure Sentinel is knowing your objectives...
