Chapter 12: Describing Security Management and the Endpoint Security Capabilities of Microsoft 365

The previous chapter covered the security capabilities of Microsoft Sentinel for SIEM and SOAR, and the creation of a modern Security Operations Center (SOC). In this chapter, we will describe the various security management capabilities of Microsoft 365 through the use of the Microsoft 365 Defender portal to increase your security posture, review reports, and manage incidents.

In this chapter, we're going to cover the following main topics:

Describing the Microsoft 365 Defender portal
Describing the use of Microsoft Secure Score
Describing the security reports and dashboards
Describing incidents and incident management capabilities
Describing ...

Get Microsoft Security, Compliance, and Identity Fundamentals Exam Ref SC-900 now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Microsoft Security, Compliance, and Identity Fundamentals Exam Ref SC-900 by Dwayne Natwick

Chapter 12: Describing Security Management and the Endpoint Security Capabilities of Microsoft 365

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly