There are no reviews yet. Be the first to send feedback to the community and the maintainers!
-Cyber-Attacks-Map---Using-Azure-Sentinel-SIEM-
Conditional-Access-Policy
Set conditional access to block high risk users using Android for Cloud Apps.Create-a-File-policy-for-Cloud-Apps
Use Defender for Cloud Apps & create a file policy for detection of sharing US PII. Set email alert.Azure-AD-Identity-Protection-policies
Safe-Attachments-Policy-using-Defender-for-Office-365
Create a Safe Attachment Policy for HR. Set to Block and redirect to admin email addressSensitivity-Labels
Create a sensitivity label called Business Sensitive. Auto Apply if US Bank account number is used.eDiscovery-hold
Perform an eDiscovery hold on Teams/SharePoint/Exchange content containing the keyword "Stock"Password-Lockout-in-Microsoft-365
Set Authentication Password Policy Lockout threshold to 3 and duration to 250 secondsManage-and-Analyse-audit-logs-and-reports
Create an alert policy for sharing of files externally. Set to high severity.Data-Loss-Prevention-DLP-
Create a DLP policy for PII only for Exchange. Set encrypt content to enable.User-identity-administration
Creating User Identity and assign the EMS license.Device-Configuration-Profile-with-Intune
Create a Configuration Profile. Block Personalization. Include Sales. Exclude Marketing.Password-Expiration-in-Microsoft-365
Configure the Password Expiration to 100 days expire. 30 days notificationAzure-AD-Connect
Synchronization methods with Azure AD Connectsagarm365
Privileged-Access-Management-in-Microsoft-Purview
We will show you how to provide users with just enough access to elevated tasks, roles, and role groups using Privileged Access Management (PAM).SOC-Analyst-Interview-Questions-LetsDefend-
This is document of SOC Interview Questions... Credits go to LetsdefendLove Open Source and this site? Check out how you can help us