Microsoft Security Solutions Flashcards

1
Q

What is SIEM?

A

Security information and event management (SIEM) is a tool that collects data from your IT system (infrastructure, software, and resources). It does analysis, looks for correlations or anomalies, and generates alerts and incidents.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is SOAR?

A

Security orchestration automated response (SOAR) is a system that takes alerts from many sources, such as a SIEM system. It then triggers action-driven automated workflows and processes to run security tasks that mitigate the issue.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is Microsoft Sentinel?

A

A scalable, cloud-native, SIEM\SOAR\XDR solution.

It delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for attack detection, threat visibility, proactive hunting, and threat response.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is XDR?

A

Extended detection and response (XDR) is a system designed to deliever intelligent, automated, and integrated security across an organization’s domain.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly