Mastering Microsoft 365 Defender: Implement Microsoft Defender for Endpoint, Identity, Cloud Apps, and Office 365 and respond to threats
Author:: Ru Campbell (Author), Viktor Hedberg (Author), Heike Ritter (Foreword)
Publisher finelybook 出版社: Packt Publishing
Publication Date 出版日期: 2023-07-28
Language 语言: English
Print Length 页数: 572 pages
ISBN-10: 1803241705
ISBN-13: 9781803241708
Book Description
Get to grips with Microsoft’s enterprise defense suite and its capabilities, deployments, incident response, and defense against cyber threats
Purchase of the print or Kindle book includes a free PDF ebook
What’s inside
- Help in understanding Microsoft 365 Defender and how it is crucial for security operations
- Implementation of the proactive security defense capabilities of Microsoft Defender for Endpoint, Identity, Office 365, and Cloud Apps so that attacks can be stopped before they start
- A guide to hunting and responding to threats using M365D’s extended detection and response capabilities
What your journey will look like
- This book will help you get up and running with Microsoft 365 Defender and help you use the whole suite effectively.
- You’ll start with a quick overview of cybersecurity risks that modern organizations face, such as ransomware and APT attacks, how Microsoft is making massive investments in security today, and gain an understanding of how to deploy Microsoft Defender for Endpoint by diving deep into configurations and their architecture.
- As you progress, you’ll learn how to configure Microsoft Defender Antivirus, and onboard and manage macOS, Android, and Linux MDE devices for effective solutions.
- You’ll also learn how to deploy Microsoft Defender for Identity and explore its different deployment methods that can protect your hybrid identity platform, as well as how to configure Microsoft Defender for Office 365 and Cloud Apps, and manage KQL queries for advanced hunting with ease.
- Toward the end, you’ll find out how M365D can be integrated with Sentinel and how to use APIs for incident response.
- By the end of this book, you will have a deep understanding of Microsoft 365 Defender, and how to protect and respond to security threats.
Some of the things you’ll learn in this book
- Modern cybersecurity threats and a brief history of Microsoft security
- All you need to know about Microsoft 365 Defender in the threat landscape
- Leveraging pro-active security benefits that Microsoft Defender for Endpoint provides
- How Microsoft Defender for Office 365 protects your email and communication platforms
- How Microsoft Defender for Identity protects your hybrid identity and Active Directory
- Improving visibility and security of your shadow IT and cloud services with Microsoft Defender for Cloud Apps
- Hardening your environment with Vulnerability Management and Secure Score
You’ll get the most out of this book if
- You’re a security engineer, incident responder, blue teamer, or an IT security professional who wants to deploy and manage Microsoft 365 Defender services and successfully investigate and respond tocyber threats
- You have a basic understanding of networking, vulnerabilities, operating systems, email, Active Directory, and cloud apps
Table of Contents
- Microsoft and Modern Cybersecurity Threats
- Microsoft 365 Defender: The Big Picture
- The Fundamentals of Microsoft Defender for Endpoint
- Onboarding Windows Clients and Servers
- Getting Started with Microsoft Defender Antivirus for Windows
- Advanced Microsoft Defender Antivirus for Windows
- Managing Attack Surface Reduction for Windows
- Managing Additional Capabilities for Windows
- Onboarding and Managing macOS
- Onboarding and Managing Linux Servers
- Onboarding and Managing iOS and Android
- Deploying Microsoft Defender for Identity
- Managing Defender for Identity
- Deploying Exchange Online Protection
- Deploying Defender for Office 365
(N.B. Please use the Look Inside option to see further chapters)
Review
“This book is for anyone who wants to learn how to use Microsoft 365 Defender, the XDR platform that helps you protect your organization from cyber threats. The authors are security experts and MVPs who will guide you step by step through the design, deployment, and operation of Microsoft 365 Defender and its components. You will also learn about the changing threat landscape, the Zero Trust strategy, security hygiene, incident response, advanced hunting, and integrations. Whether you are new or experienced with Microsoft 365 Defender, this book will help you master its features and capabilities.”
—
Heike Ritter, Principal Product Manager, Customer Experience at Microsoft Security
About the Author
Ruairidh (Ru) Campbell is a Microsoft Security MVP and leads Microsoft consultancy at Threatscape.
At Threatscape, Ru develops, delivers, and manages offerings and professional services for cybersecurity, compliance, identity, and management.
In the cybersecurity community, Ru runs the Microsoft 365 Security & Compliance user group and his blog (campbell.scot), regularly speaks at other user groups and conferences, and contributes to well-known industry publications such as Practical 365.
Ru holds 14 Microsoft certifications and a B.Sc. (Distinction) in computer networking from the University of the West of Scotland. Away from cybersecurity, he is a petrolhead who enjoys heavy metal and hiking around Scotland with his wife.
Viktor Hedberg is a Microsoft Security MVP and senior consultant at Truesec.
At Truesec, Viktor works with proactive security measures within the Microsoft sphere of technologies, by delivering workshops on best practices and by his deep technical expertise in these areas.
In the cybersecurity community, Viktor runs his blogs at Truesec (Experts – viktor-hedberg). Alongside this, he is one of the hosts of the Swedish Windows Security user group, as well as a co-host of the Swedish podcast The Nerd Herd. He is a frequent speaker at both conferences and user groups around the world, focusing on matters of Microsoft Security.
Viktor holds numerous Microsoft certifications, as well as being a Microsoft Certified Trainer. Away from cybersecurity, Viktor is a family man, spending most of his time with his wife and three kids, as well as enjoying football, both as a practitioner and as a fan. Heavy metal has been part of his life since his early teens.
相关文件下载地址
相关推荐
- Digital Control of Power Converters Using Arduino and an STM32 Microcontroller
- Fundamentals of Enterprise Architecture: Proven Frameworks for Effective Architecture Decisions
- I-Function and Its Applications
- Policy as Code: Improving Cloud Native Security
- Split Federated Learning for Secure IoT Applications: Concepts, frameworks, applications and case studies
- Privacy-preserving Computing: for Big Data Analytics and AI