• Raspberry Pi Logging To Analytics Workspace

    Posted on June 13, 2023

    Introduction and Use Case: You’re an industrial manufacturing plant manager, you need to prototype, deploy, secure, and remotely manage connected electronic devices at scale. You need to be practical and most importantly, cost-effective. Thankfully, you’ve made good decisions up to this point and have invested in a SIEM such as... [Read More]

  • Purview Sensitivity Labels

    Posted on June 7, 2023

    Introduction and Use Case: Contoso Co. is kicking off a new top-secret project loaded with IP that’s going to give them an edge if they can get to market before the competitors figure out what they’ve got. They’ve code-named this Project AWESOME and need to protect any/all data and communications... [Read More]

  • Kql Detective Part 3

    Posted on May 23, 2023

    What Went Down? The following KQL query is great for checking out your billable ingest patterns over the past quarter for Quarterly Business Reports and stuff. In this scenario, you run this query and discover a significant drop in billable ingest volume for a couple of weeks. You’re delivering the... [Read More]

  • Sentinel Cost Optimization Exercise Part 2

    Posted on May 17, 2023

    Introduction and Use Case: You have recently deployed Microsoft Defender for Endpoint. Before this, your workstations were reporting directly to Sentinel. Now that your workstations have 30 days of retention in the Defender for Endpoint product, why duplicate those workstation logs into your Sentienl ingest volume and pay twice? From... [Read More]

  • Sentinel Cost Optimization Part 2

    Posted on May 15, 2023

    Introduction and Use Case: Effective Per GB Price is a crucial part of any cost optimization exercise against your environment. How do you find your Effective Per GB Price and how do you use it to calculate how much stuff costs? [Read More]