This article is contributed. See the original author and article here.

Microsoft 365 Defender, part of Microsoft’s XDR solution, leverages the Microsoft 365 security portfolio to automatically analyze threat data across domains, building a complete picture of each attack in a single dashboard. This Ninja blog covers the features and functions of Microsoft 365 Defender – everything that goes across the workloads, but not the individual workloads themselves. The content is structured into three different knowledge levels, with multiple modules: Fundamentals, Intermediate, and Expert.


We will keep updating this training on a regular basis and highlight new resources.


 


Table of Contents


Security Operations Fundamentals


Module 1. Technical overview


Module 2. Getting started


Module 3. Investigation – Incident


Module 4. Advanced hunting


Module 5. Self-healing


Module 6. Community (blogs, webinars, GitHub)


 


Security Operations Intermediate


Module 1. Architecture


Module 2. Investigation


Module 3. Advanced hunting


Module 4. Automated investigation and remediation


Module 6. Self-healing


Module 5. Build your own lab


Module 7. Reporting


 


Security Operations Expert


Module 1. Incidents


Module 2. Advanced hunting


Module 3. APIs, custom reports, SIEM & other integrations


 


Legend:





















vid.png Product videos



webcast.png Webcast recordings



TechCommunity.png Tech Community



docs.png Docs on Microsoft



blogs.png Blogs on Microsoft



GitHub.png GitHub



⤴ External



InteractiveGuides.png Interactive guides


 

 


Security Operations Fundamentals


Module 1. Technical overview



Module 2. Getting started



Module 3. Investigation – Incident



Module 4. Advanced hunting



Module 5. Self-healing



Module 6. Community (blogs, webinars, GitHub)



Security Operations Intermediate


Module 1.  Architecture



Module 2. Investigation



Module 3. Advanced hunting



Module 4. Automated investigation and remediation



Module 6. Self-healing



Module 5. Build your own lab



Module 7. Reporting



 


Security Operations Expert


Module 1. Incidents



Module 2. Advanced hunting



Module 3. APIs, custom reports, SIEM & other integrations


Brought to you by Dr. Ware, Microsoft Office 365 Silver Partner, Charleston SC.