Microsoft Unified XDR and SIEM Solution Handbook: Modernize and build a unified SOC platform for future-proof security
Author: Raghu Boddu (Author), Sami Lamppu (Author)
Publisher finelybook 出版社: Packt Publishing
Edition 版本: N/A
Publication Date 出版日期: 2024-02-29
Language 语言: English
Print Length 页数: 296 pages
ISBN-10: 1835086853
ISBN-13: 9781835086858
Book Description
Book Description
Review
“For anyone interested in the Microsoft Cloud ecosystem, this book does a fantastic job of explaining some new and exciting concepts and capabilities that should be in every cybersecurity professional’s arsenal. These authors do a wonderful job of guiding the reader through the basics of XDR and SIEM solutions and quickly bringing them up to an advanced level capable of implementing these technologies in their environment.
For anyone on the fence about whether to jump into the world of Azure or XDR solutions, this is where you need to start. If you are someone who has been working in this field for a while, this book will not leave you disappointed. Reading through this guide, you will inevitably find some emerging capabilities and concepts that will make a world of difference.”
Chad Maurice Principal, SIEM Engineer, Walmart Global Tech
“This book is an excellent resource for professionals who utilize or are considering the adoption of Microsoft security solutions within their organization, blending strategic direction with hands-on technical advice. It is suitable for individuals in leadership roles as well as security practitioners. The book offers a comprehensive overview of the terminology associated with SIEM and XDR domains, along with a detailed understanding of the importance of each solution and strategies for their integration to achieve optimal protection.
Furthermore, the book delivers an extensive review of the capabilities of each tool and the advantages they bring to enhance your company’s cybersecurity measures.”
Olaf Hartong, Security Researcher at FalconForce, MVP
“Microsoft Unified XDR and SIEM Solution Handbook is a comprehensive guide that provides the reader with practical insights and strategies for implementing a security initiative with modern Extended Detection and Response (XDR) and Security Information and Event Management (SIEM) solutions.
From basic concepts such as Zero Trust principles to a detailed overview of all Microsoft security solutions, the authors, Raghu Boddu and Sami Lamppu, not only explain these topics in theory but also demonstrate them in practice using a fictitious use case.
This book is for all security professionals, IT decision-makers, and students looking for a practical guide. It will enable them to navigate the complexities of modern security.”
Fabian Bader, Cybersecurity Architect at glueckkanja, Microsoft MVP
“[…] This book is a comprehensive guide that delves into the intricacies of implementing and optimizing XDR (Extended Detection and Response) and SIEM (Security Information and Event Management) solutions, primarily within the Microsoft ecosystem. The authors set out to address the growing need for practical guidance in this rapidly evolving landscape, and I believe they have succeeded admirably.
Apart from outlining critical aspects of XDR and SIEM, which it does quite well, it also provides excellent practical case studies and tangible insights that are vendor-agnostic (even though the core focus is on Microsoft technologies) and delves well into future trends and challenges the reader should be preparing for.
This book is more than a technical manual; it’s a strategic guide for security professionals navigating the complexities of modern threat landscapes. Boddu and Lamppu’s expertise shines through, and I wholeheartedly recommend this book to anyone seeking practical, actionable insights into XDR and SIEM.”
Justen Graves, Senior Security Engineer at Microsoft, Co-Author of Microsoft Defender for Endpoint in Depth
About the Author
Raghu Boddu is a Microsoft Security MVP based out of Texas. He works as Technical Director and leads Security & Threat Practice at Edgile, a Wipro company. A Visionary Leader with more than two decades of IT experience, helped many customers as advisory, specialization in Cyber Security, Legacy Migration & Modernization Strategies, multi-cloud/hybrid implementations, Digital Cloud Transformation Roadmaps, Cloud Native Architectures, etc. Raghu has earned dual masters (Master of Science in Information Services and Master of Science in Information Technology). He is a PMP certified, Agile Scrum certified & Six Sigma Green Belt certified and also holds Azure and AWS Solution Architect certifications.
Sami Lamppu is a Cloud Security Lead at Netox, a Finland-based Cyber Security company. With over 20 years of IT experience, he is a distinguished expert in the field. He is not only a Microsoft Security MVP but also a passionate advocate for cloud security. For the past 8 years, he has been specializing in cloud security, focusing on innovative solutions and strategies. His expertise extends beyond the cloud, encompassing multi-cloud and hybrid implementations, as well as on-premises environments. Sami is the co-author of the “Entra ID Attack & Defense Playbook” (formerly known as the “Azure AD Attack & Defense Playbook”), and also blogs frequently. He holds a Bachelor’s degree in business information technology and holds ~50+ Microsoft certifications, dating back to Windows Server 2003 and Windows XP.
相关文件下载地址
相关推荐
- Microsoft 365 Copilot At Work: Using AI to Get the Most from Your Business Data and Favorite Apps
- Real-World Edge Computing: Scale, secure, and succeed in the realm of edge computing with Open Horizon
- Unveiling NIST Cybersecurity Framework 2.0: Secure your organization with the practical applications of CSF
- Mastering DevOps on Microsoft Power Platform: Build, deploy, and secure low-code solutions on Power Platform using Azure DevOps and GitHub
- Microsoft Dynamics 365 AI for Business Insights: Transform your business processes with the practical implementation of Dynamics 365 AI modules
- VMware Cloud on AWS Blueprint: Design, automate, and migrate VMware workloads on AWS global infrastructure