Microsoft announces a slew of security enhancements for Azure
To further protect its Azure customers, Microsoft has announced a variety of security-related enhancements for the platform - and Security Center in particular - at Ignite 2019.
First up is better threat protection for cloud resources by way of Azure Sentinel, the security information and event management (SIEM) offering from Microsoft's cloud. This means that any threat can be investigated, hunted and correlated with other signals quicker.
Sentinel also now has built-in hunting queries for Linux and network events, the ability to launch Azure Notebooks straight from the SIEM solution, and new analytics and investigation tools to offer better insights on suspicious URLs. Between new connectors from security partners, and new Graph Security API integrations, Sentinel can now use endpoint, network, and identity data from third-party security vendors, as well as allow business customers to sync alerts from it, other Microsoft solutions, and even third-party ticketing and security management offerings. All of these enhancements are now available in preview.