Welcome to another Azure Content Spotlight! These articles are used to highlight items in Azure that could be more visible to the Azure community.
The Azure Security Center (ASC) provides security management and threat detection for both cloud and on-prem environments. The intent of ASC is to provide a unified mechanism for managing security policies and cloud defenses, threat detection and managing security alerts and incidents. The best place to start is the About Security Center documentation.
This spotlight highlights the post How Azure Security Center helps analyze attacks using Investigation and Log Search. In the post, Ajeet from the Microsoft Azure Security team illustrates how an alert representing a security breach can be viewed in ASC and an investigation started. The illustration showcases how ASC can be used to triage the incident and manage the investigation process.
Best for 2018!