AzureTracks

Microsoft Defender for Cloud Use Case: Governance Rules in Action

Security at scale isn’t just about visibility—it’s about enforcement. As organizations grow their cloud footprint across multiple subscriptions, management groups, and even cloud providers, maintaining consistent security posture becomes exponentially harder.

Enter Governance Rules in Microsoft Defender for Cloud (MDC). These rules allow security teams to define, enforce, and monitor security policies across their environment using automation and policy-as-code principles.

Posted on October 16, 2025 6:55 am

Azure

Microsoft Defender for Cloud: Deep Dive

In today’s cloud-first world, security isn’t just a checkbox—it’s a continuous discipline. Microsoft Defender for Cloud is the cornerstone of Azure’s native security posture management and threat protection. Whether you’re running workloads in Azure, AWS, GCP, or on-premises via Azure Arc, Defender for Cloud provides unified visibility, intelligent recommendations, and active threat detection.

Posted on October 2, 2025 9:38 am

Azure

Top Azure Services for Supporting Small Businesses

In today’s digital-first world, small businesses must leverage cost-effective, scalable, and secure cloud solutions to stay competitive. Microsoft Azure offers a powerful ecosystem of cloud services that can help businesses improve efficiency, security, and innovation without requiring extensive technical expertise. One of the biggest advantages of Azure and Microsoft Cloud is the ability to toggle (scale) up or down with your business. I’ve always felt that cloud-based secure identity is a huge advantage, and Entra ID makes it easy to support all the advanced security features without dragging the traditional big costs along.

Posted on June 26, 2025 6:44 am

Automation

Microsoft Sentinel Automated Triage - Elevate your Security Posture

Automated Triage in Microsoft Sentinel

In today’s post we will look at some different ways to automate incident triage in Microsoft Sentinel. Organizations face an ever-increasing volume of security threats. Cyberattacks are becoming more sophisticated, and the sheer number of alerts can overwhelm even the most seasoned security teams. Automated triage in Microsoft Sentinel emerges as a crucial solution, empowering organizations to respond swiftly and efficiently to potential threats. This is where Microsoft Sentinel’s automated triage capabilities are…

Posted on February 6, 2025 8:00 am

Azure

Azure Updates – Number 99 – October 5, 2024

A summary update on Azure news that includes updates released from Microsoft Azure related to Azure, Architecture, Compute, Security Copilot and Sentinel topics. Save time digging around to find recent releases and changes.

Posted on October 5, 2024 9:00 am

Azure

Microsoft Sentinel Governance Optimization Enhancements

Enhancing Microsoft Sentinel: Part 3 – Ongoing Optimization and Staying Ahead of Threats

Join me for the final article in the min-series on Enhancing Microsoft Sentinel. Today, we review ongoing optimizations and how to stay ahead of emerging threats.

Posted on October 12, 2023 7:05 am

Azure

Enhancing Microsoft Sentinel: Part 2 – Advanced Customization and Threat Hunting

Join me for Part 2 of 3 where we review advanced customizations in Microsoft Sentinel. We review some of the steps to advance your threat hunting and better protect your environment.

Posted on September 28, 2023 6:55 am

Azure

Enhancing Microsoft Sentinel: Part 1 – Building a Stronger Foundation

Join me for Part 1 of 3 where we review Building a Stronger Foundation in Microsoft Sentinel. We review the steps to help review and build a stronger SIEM solution together.

Posted on September 14, 2023 7:05 am

Automation

Responding to Incidents with Microsoft Sentinel – Part 2 – Optimize What You See

Today, we will explore some enhancements to your Microsoft Sentinel environment. I look at optimizing the ticket queue and working to prevent ticket overload. Join me to explore Automation Rules.

Posted on June 22, 2023 7:04 am

Automation

Building Automation Rules with your Sentinel Instance in PowerShell

Today, we explore creating custom Automation Rules in Microsoft Sentinel to help us auto-close low value incidents. Let’s look at how we can automatically close & impact incidents and make it all work using PowerShell!

Posted on April 13, 2023 7:08 am

Tag: automation