Archive
Our new SIEM tool: Microsoft Azure Sentinel, intelligent security analytics for your entire enterprise
As we know, many legitimate threats go unnoticed and with the unsurprising high volume of alerts and your team spending far too much time in infrastructure setup or BAU tasks, you need a solution that empowers your existing SecOps team to see the threats clearer and eliminate the distractions.

That’s why we reimagined the SIEM tool as a new cloud-native solution called Microsoft Azure Sentinel. Azure Sentinel provides intelligent security analytics at cloud scale for your entire enterprise. Azure Sentinel makes it easy to collect security data across your entire hybrid organization from devices, to users, to apps, to servers on any cloud.
Collect data across your enterprise easily – With Azure Sentinel you can aggregate all security data with built-in connectors, native integration of Microsoft signals, and support for industry standard log formats like common event format and syslog.
Analyze and detect threats quickly with AI on your side – Security analysts face a huge burden from triaging as they sift through a sea of alerts, and correlate alerts from different products manually or using a traditional correlation engine.
Investigate and hunt for suspicious activities – Graphical and AI-based investigation will reduce the time it takes to understand the full scope of an attack and its impact. You can visualize the attack and take quick actions in the same dashboard.
Automate common tasks and threat response – While AI sharpens your focus on finding problems, once you have solved the problem you don’t want to keep finding the same problems over and over – rather you want to automate response to these issues.
More Information:
https://azure.microsoft.com/en-us/services/azure-sentinel/#documentation
Azure Sentinel preview is free
There will be no charges specific to Azure Sentinel during the preview. Pricing for Azure Sentinel will be announced in the future and a notice will be provided prior to the end of the preview. Should you choose to continue using Azure Sentinel after the notice period, you will be billed at the applicable rates
My Microsoft Teched Australia 2013 speaking sessions
This year I will be presenting 4 ILL sessions at TechEd Australia, but you can also find me at the Microsoft Showcase : Datacenter and at the Insight booth in the Exhibition Centre.
Take time to visit Insight booth and learn about what we can do to help your business and to enter on a draw to win a Microsoft Surface or a signed copy of my book: System Center 2012 VMM.
My Sessions:
AZR-I201
Wednesday 11:15 – 12:45 |
Getting to Know Windows Azure IaaS, Part 1
Whether you build apps or support the infrastructure that runs the apps, the cloud can be a really big place. For some, it’s a natural evolution for their application and infrastructure to embrace the power and scale of the cloud. For others, it’s a journey that has to begin with a single step. Windows Azure provides that first step with a scalable, flexible platform for deploying your applications your way. With our Infrastructure as a Service platform (IaaS) called Windows Azure Virtual Machines, you get the flexibility to choose between Windows and Linux with full control over the operating system configuration and installed software, matched with the portability of Hyper-V disk images. Windows Azure Virtual Machines provide the perfect environment for meeting all of your Infrastructure-as-a-Service needs. To learn more about our Infrastructure as a Service platform, we invite all developers and IT professionals to join Matt Hester as he introduces you to the Microsoft Cloud Platform, dives deep into Windows Azure Virtual Machines, and helps walk you through a hands-on demonstration of the power of IaaS on the Windows Azure platform. This is part 1 of 2. Please plan on attending both WAD-IL201 and WAD-IL202 to complete the lab. The lab requires you to connect to the Windows Azure Portal, where you will provision three separate virtual machines in the cloud and configure them each via a Remote Desktop client connection. All participants need to have access for Windows Azure prior to the lab. You can register for a FREE 90-day trial of the Windows Azure prior to the lab. You can sign up for your FREE trial here: http://aka.ms/IaasBootCamp. |
AZR-I202
Wednesday |
Getting to Know Windows Azure IaaS, Part 2
Whether you build apps or support the infrastructure that runs the apps, the cloud can be a really big place. For some, it’s a natural evolution for their application and infrastructure to embrace the power and scale of the cloud. For others, it’s a journey that has to begin with a single step. Windows Azure provides that first step with a scalable, flexible platform for deploying your applications your way. With our Infrastructure as a Service platform (IaaS) called Windows Azure Virtual Machines, you get the flexibility to choose between Windows and Linux with full control over the operating system configuration and installed software, matched with the portability of Hyper-V disk images. Windows Azure Virtual Machines provide the perfect environment for meeting all of your Infrastructure-as-a-Service needs. To learn more about our Infrastructure as a Service platform, we invite all developers and IT professionals to join Matt Hester as he introduces you to the Microsoft Cloud Platform, dives deep into Windows Azure Virtual Machines, and helps walk you through a hands-on demonstration of the power of IaaS on the Windows Azure platform. This is part 2 of 2. In order to attend this session you need to attend WAD-IL201 first. The lab requires you to connect to the Windows Azure Portal, where you will provision three separate virtual machines in the cloud and configure them each via a Remote Desktop client connection. All participants need to have access for Windows Azure prior to the lab. You can register for a FREE 90-day trial of the Windows Azure prior to the lab. You can sign up for your FREE trial here: http://aka.ms/IaasBootCamp. |
MDC-I315
Friday |
Microsoft System Center 2012 – Orchestrator: Overview and Automation of IT Process
This lab guides you through several process automation examples, providing hands-on experience with the concepts explained in the course manual and provides real-world context. In this exercise, you are introduced to the interfaces available with Orchestrator. Create a Runbook to perform actions such as working with File Management Objects, monitor a folder for the accumulation of more than 5 log files, move the files to an archive folder and log an event for each file archive operation, using the Runbook Tester Console to Validate Runbooks. This lab also covers the creation of a Runbook to perform the actions, such as automate recovery of a Windows Service based on alert detection from a unit monitor in System Center Operations Manager to address the intermittent Windows service failures. It also highlights advanced concepts and techniques that can be employed when creating runbooks in Orchestrator. |
MDC-I321
Thursday |
Microsoft System Center 2012: Network Virtualization
This lab provides a step-by-step description for how to build, configure and implement Hyper-V Network Virtualization using Windows Server 2012 and System Center 2012 SP1. You create a multi-tenant virtual network on shared physical network including multiple subnets and virtual routes using the NVGRE configuration. |
Insight selected as a 2013 Microsoft Australia Partner Awards (MAPA) finalist
Insight has been selected as a 2013 Microsoft Australia Partner Awards (MAPA) finalist, for Software Asset Management (SAM) Partner of the Year under the title of Software Asset Management .
Insight, a worldwide leading provider of software and experts in license management solutions, helps organisations fully realise the value of their software investments. Through our SAM services, we can help you critically assess your entire software environment, providing you with reliable counts of licenses owned and licenses utilised, and can offer strategies for embracing best practices and technologies for reducing total cost of ownership and ongoing software compliance.
“Our certified, licensed professionals partner with clients using a consultative approach. By analysing data and internal processes, these experts focus on diagnosing the problem and then implementing solutions and best practices that create continuous improvements.”
For more information about Software Asset Management visit http://au.insight.com/en-au/solutions/software-asset-management