Managed Azure Sentinel SIEM
Techtron® Azure Sentinel Managed Services allows companies to address the increasingly complex security requirements for both cloud and on premise services, using Azure Sentinel a modern SIEM from Microsoft.
Azure Sentinel is a cloud-native security information and event manager (SIEM) platform that uses built-in AI to help analyse large volumes of data across an enterprise. Azure Sentinel aggregates data from all sources, including users, applications, servers and devices running on-premises or in any cloud, letting you reason over millions of records in a few seconds. It includes built-in connectors for many of the popular security solutions. Collect data from any source with support for open standard formats like CEF and Syslog.
KEY SERVICE FEATURES
SIEM Capabilities delivered from the Azure Cloud | Support for on-premises log sources | Security Monitoring of Cloud Services (Azure, AWS, Google) | Continuous tuning and optimization | Performance and availability monitoring and notification | Access to custom Sentinel Alert Rules Service Catalogue | Compliance aware monitoring | Daily Log Analysis | Support during security incidents | SOAR support and integration | Online knowledgebase | Monthly service review.
TECHTRON AZURE SENTINEL SIEM SERVICE INCLUDE:
- Build and configuration of Sentinel cloud instance
- Onboarding of log data
- Creation of client dashboards and Development of threat hunting templates
- Building and tuning of alerting scenarios for investigative case generation
- Setup of playbooks to execute automatically when an alert is triggered
- Client security team detection and response training
- Ongoing tuning and optimization of your Azure Sentinel environment
Managed Azure Sentinel Packages
1. SENTINEL OFFICE 365
Ideal solution for business with data in office 365 and are concerned about security *Includes Threat Intelligence feed *1year commitment
2. SENTINEL SMB
Includes Office 365, Azure and on-premise data sources *Includes Threat Intelligence feed *1year commitment
3. SENTINEL ENTERPRISE
Includes any compatible log source and custom requirements. *Includes Threat Intelligence feed *1year commitment