Microsoft Sentinel Analytics

URI: https://gptkb.org/entity/Microsoft_Sentinel_Analytics

GPTKB entity

Statements (72)

Predicate	Object
gptkbp:instance_of	gptkb:Data_Analytics
gptkbp:developed_by	gptkb:Microsoft
gptkbp:enables	Data visualization Real-time monitoring Threat hunting Automated investigation Cross-platform security monitoring Security risk assessment.
gptkbp:facilitates	Collaboration among security teams
gptkbp:features	Custom dashboards
https://www.w3.org/2000/01/rdf-schema#label	Microsoft Sentinel Analytics
gptkbp:includes	Data connectors
gptkbp:integrates_with	Azure services
gptkbp:is_available_in	Multiple regions
gptkbp:is_available_on	gptkb:Azure_Marketplace
gptkbp:is_compatible_with	On-premises systems Cloud applications Third-party security tools
gptkbp:is_designed_for	Enterprise security teams
gptkbp:is_integrated_with	gptkb:Azure_Active_Directory gptkb:Microsoft_Defender
gptkbp:is_part_of	gptkb:Microsoft_Sentinel gptkb:Microsoft_Azure_Security_Center Microsoft Security ecosystem Cloud-native SIEM solutions
gptkbp:is_used_by	Compliance officers Security analysts IT security professionals
gptkbp:is_used_for	Log management Vulnerability management
gptkbp:offers	Alerts and notifications Incident response capabilities Security alerts Security policy management Threat intelligence integration Automated reporting Customizable reports Data loss prevention features Integration with SIEM solutions Custom alert rules User and entity behavior analytics (UEBA)
gptkbp:provides	Threat detection User activity monitoring Network security monitoring Security incident investigation tools Log analytics Incident management tools Security posture assessment Incident response automation tools Security incident response plans Security compliance checks Security analytics capabilities Automated playbooks Security data analysis tools
gptkbp:supports	gptkb:machine_learning API access Compliance reporting Data retention policies Multi-cloud environments Data classification Data enrichment Integration with Microsoft 365 Endpoint security solutions User access management Real-time threat detection Incident tracking Incident response workflows
gptkbp:used_for	gptkb:security
gptkbp:utilizes	gptkb:Artificial_Intelligence Kusto Query Language (KQL)
gptkbp:bfsParent	gptkb:Microsoft
gptkbp:bfsLayer	4