Windows Server Posted January 23 Posted January 23 Third party tools are a common part of any IT tech stack, but they often lack the functionality required for the unique needs of security operations. They may require significant customization or workarounds to address case management in the SOC, or lack the ability to collect details like threat intelligence that are critical for resolving an incident. They also may require context switching into different portals, keeping teams from working as efficiently as possible. For these reasons, we are excited to be introducing a new solution for case management, built specifically for SecOps teams, and integrated into the experience of Microsoft Sentinel and Defender XDR in the unified SecOps platform. With new case management functionality, available for any customer who has Microsoft Sentinel, customers can benefit from a purpose-built approach to managing and collaborating across security cases. The public preview of our case management solution will include functionality such as the ability to create and track cases within the Defender portal, the ability to define a workflow with customized statuses, assign tasks with due dates to team members, and link multiple incidents to a case to address complex security issues. You can also manage use cases using role-based access controls, enabling only the necessary people to view information, based on their assigned roles within your Microsoft Security tools. We are continuing to invest in the functionality of case management, with automation and APIs, multi-tenant support, more evidence types, more expansive integrations, workflow customization, and more. To learn more about how you can get started today, read our blog on the Microsoft Sentinel Tech Community. Check out this blog post here for more info: https://techcommunity.microsoft.com/blog/MicrosoftSentinelBlog/improve-secops-collaboration-with-case-management/4369044View the full article Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.