You need to design a centralized monitoring solution that will collect log and diagnostic data from multiple subscriptions and hosting providers and that will also automatically analyze log data and detect threats together with automatic responses to known events. Which Azure service will you use?
Experience Level: Senior
Tags: Azure CloudAzure MonitorAzure Sentinel
Answer
As the solution is after security, Azure Sentinel is great option. Azure Sentinel is a cloud-native Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platform
Azure Monitor allows you to collect log and diagnostic data, it allows you to define automatic responses to know events, but it wasn't designed as a security tool.
Related Azure Cloud job interview questions
According to Microsoft Cloud Adoption Framework (CAF), what are the three specific terms related to Management phaze that can help improve conversations among business stakeholders?
Microsoft Cloud Adoption Framework (CAF) JuniorWhat are 6 key steps for establishing a management baseline according to Microsoft Cloud Adoption Framework (CAF)?
Microsoft Cloud Adoption Framework (CAF) JuniorWhat is management baseline according to Microsoft Cloud Adoption Framework (CAF)?
Microsoft Cloud Adoption Framework (CAF) JuniorWhat are the 5 disciplines of cloud governance according to Microsoft Cloud Adoption Framework (CAF)?
Microsoft Cloud Adoption Framework (CAF) JuniorIs Cloud Security Posture Management (CSPM) available for all Azure Subscriptions?
Microsoft Defender Junior