Azure Sentinel Deployment​

The Azure Sentinel CMMC Deployment allows you to examine log queries that are matched to CMMC controls throughout the Azure cloud, including Microsoft security products, Office 365, Teams, Intune, Windows Virtual Desktop, and more. Security Architects, Engineers, SecOps Analysts, Managers, and IT Pros may use this worksheet to understand the security posture of cloud workloads better. There are also suggestions for choosing, developing, deploying, and configuring Microsoft solutions to align with CMMC criteria and practices. This includes 250+ control cards matched to the 17 CMMC control families and are available in all five maturity levels with a configurable GUI.
cmmc azure sentinel
The workbook helps you to gain better visibility into your cloud architecture from security perspective while reinforcing CMMC principles for building cybersecurity critical thinking skills. The workbook consolidates multiple log sources from your Azure environment:
  • Azure Active Directory
  • Azure Active Directory Identity Protection
  • Azure Activity
  • Azure DDoS Protection
  • Azure Firewall
  • Azure Information Protection
  • Azure Security Center
  • Common Event Format
  • DNS
  • Intune
  • Microsoft 365 Defender
  • Microsoft Cloud App Security
  • Microsoft Defender for Endpoint
  • Microsoft Defender for Identity
  • Office 365
  • Security Events
  • Syslog
  • Threat Intelligence Platforms
  • Windows Firewall
  • Teams
  • User Entity Behavior Analytics
  • Windows Virtual Desktop

©2022 Knonix | All Rights Reserved