Chapter 6: An Overview: Microsoft Defender for Endpoint Alerts, Incidents, Evidence, and Dashboards

One of the requirements from a skill set standpoint that you will need as the Microsoft security operations analyst for your enterprise will be the skill set in fully understanding the Microsoft Defender for Endpoint portal. You will need to know with quick precision where to go for various alerts, tasks, and reports. This knowledge will prove to be crucial daily, but especially during a time of an active incident or attack. During this chapter, we will go through an in-depth overview of the Microsoft Defender for Endpoint portal so that you are more quickly able to apply this knowledge both in the SC-200 exam and in your role as the Microsoft ...

Get Microsoft Security Operations Analyst Exam Ref SC-200 Certification Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Microsoft Security Operations Analyst Exam Ref SC-200 Certification Guide by Trevor Stuart, Joe Anich

Chapter 6: An Overview: Microsoft Defender for Endpoint Alerts, Incidents, Evidence, and Dashboards

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly