Jump to content
Microsoft Windows Bulletin Board

Recommended Posts

Posted

Third party tools are a common part of any IT tech stack, but they often lack the functionality required for the unique needs of security operations. They may require significant customization or workarounds to address case management in the SOC, or lack the ability to collect details like threat intelligence that are critical for resolving an incident.  They also may require context switching into different portals, keeping teams from working as efficiently as possible. 

For these reasons, we are excited to be introducing a new solution for case management, built specifically for SecOps teams, and integrated into the experience of Microsoft Sentinel and Defender XDR in the unified SecOps platform. With new case management functionality, available for any customer who has Microsoft Sentinel, customers can benefit from a purpose-built approach to managing and collaborating across security cases. 

The public preview of our case management solution will include functionality such as the ability to create and track cases within the Defender portal, the ability to define a workflow with customized statuses, assign tasks with due dates to team members, and link multiple incidents to a case to address complex security issues. You can also manage use cases using role-based access controls, enabling only the necessary people to view information, based on their assigned roles within your Microsoft Security tools.  

We are continuing to invest in the functionality of case management, with automation and APIs, multi-tenant support, more evidence types, more expansive integrations, workflow customization, and more. To learn more about how you can get started today, read our blog on the Microsoft Sentinel Tech Community.  

Check out this blog post here for more info: https://techcommunity.microsoft.com/blog/MicrosoftSentinelBlog/improve-secops-collaboration-with-case-management/4369044

View the full article

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...