UP TO 50% OFF on Combo Courses!

Microsoft Sentinel Training Course
Read Reviews

The Microsoft Sentinel (earlier known as Azure Sentinel) training course will allow you to master the Microsoft Sentinel service.

Microsoft Sentinel Course Highlights

  • 24 hrs of instructor-led training
  • Post Support
  • Official Microsoft Curriculum covered
  • Certified pool of instructors

Accredited By

Microsoft Sentinel TRAINING CALENDAR

Want undivided attention? Choose 1-on-1 Training

Why Choose 1-on-1 Training

  •   Focused attention and face to face instructor support
  •   Custom Calendar & Training Schedule
  •   Highly interactive environment
  •   Learn via labs, mock tests, case studies, Q&A sessions
  •   On-spot doubt clearing opportunity
  •   Interview Support and Free Career Guidance

InfosecTrain Learning Bonanza Offer Buy 1 Get 4*

Register for any Course and get 4 eLearning (Worth USD 199 Self-paced Learning) Courses 100% free. Don't miss this offer Enroll Now

  • Cyber Security Engineer Masterclass
  • Cyber Security Fundamentals (JCP)
  • Introduction of Data Privacy
  • Red Team Ethical Hacking Masterclass

*All 4 free courses are eLearning modules, providing self-paced learning through instructional videos. Offer valid till July 31st, 2024.

Choose your Preferred Learning Mode



Customized schedule
Learn at your dedicated hour
Instant clarification of doubt
Guaranteed to run

Get Started


Flexibility, Convenience & Time Saving
More Effective
Learning Cost Savings

Classes starting from

5th Sep: Weekend

15th Sep: Weekday

ENROLL NOW Preferred


Anytime, Anywhere – Across The Globe
Hire A Trainer
At Your Own Pace
Customized Corporate Training

Contact US For Business
customized training

Looking for a customized training?


Microsoft Sentinel Course Description


Microsoft Sentinel is a cloud-native Security Information and Event Manager (SIEM) with built-in AI to enable enterprises quickly analyze enormous amounts of data. It gathers data from all sources, including people, apps, servers, and devices running on-premises or in the cloud, and allows you to quickly analyze millions of records. It comes with built-in connections that make integrating popular security systems a breeze. With support for open standard formats like CEF and Syslog, you may collect data from any source.

The Microsoft Sentinel Training Course with InfosecTrain teaches you the basics of Microsoft Sentinel, its components, and its functionalities. It will take you through Azure Analytics, explain the difference between Traditional SIEM and Cloud-native SIEM.

Why Microsoft Sentinel?

Microsoft Azure is the world’s second-largest cloud computing platform, and it’s growing at a breakneck pace. Azure, which was first published in 2010, has a sizable market share. Azure has helped enterprises to scale up their presence, performance, and profitability by providing subscription-based infrastructure, platforms, and services. Azure is a secure, highly available, scalable, and resilient platform for delivering and developing commercial applications. Azure’s service offerings are updated and improved on a regular basis to ensure customer satisfaction. Microsoft Sentinel is a critical Microsoft Azure service. It is impossible to comprehend security operations without its expertise.

Why Microsoft Sentinel with InfosecTrain?

InfosecTrain is one of the finest security and technology training and consulting organizations, focusing on a range of IT security training and Information Security services. InfosecTrain offers complete training and consulting solutions to its customers globally. Whether the requirements are technical services, certification, or customized training, InfosecTrain is consistently delivering the highest quality and best success rate in the industry.

  • We have certified and highly experienced trainers who have an in-depth knowledge of the subject.
  • Our training schedule is flexible and we also provide recordings of the lectures. 
  • We deliver post-training support.
  • We also bring forth an interactive Q & A session.

Target Audience

This course is intended for candidates interested in beginning their career in Azure Security.


  • Participants must have a basic grasp of Azure Cloud and services
  • Familiarity with security operations in an organization


6 + 62 =

Microsoft Sentinel Course Objectives

  • Recognize Microsoft Sentinel’s many components and features.
  • Determine which scenarios Microsoft Sentinel might be a good fit for.


  • This course is a beginner to intermediate level. This course is suitable for candidates who want to understand what is Microsoft Sentinel? and how it works?
  • This course is also ideal for candidates who want to start learning about SIEM solutions.
  • This course will be having hands-on labs as well. For the demonstration purpose, we will be using all the generic examples. For LAB we will be using free tier and trial license products, so, demonstrations will be limited to those scenarios.

Microsoft Sentinel Course Content

Let’s Go with Microsoft Sentinel

  • Introduction
  • What Is Microsoft Sentinel?
  • Do you Know SIEM?
  • Why Should we care?
  • Tour de Sentinel
  • Pricing related to Sentinel

KQL: Basic you Need for Sentinel and Security.

  •  Introduction
  • Most Used Operators
  • Analyse Query result
  • Build multi-table statements using KQL
  • Work with string data using

Start Working with Sentinel- Collect

  • What is LAW(Log Analytic Workspace)
  • How to collect the Log?
  • Start using the connector
  • What is Sentinel Workbook

Start Working with Sentinel- Detect

  • What are Analytic Rules?
  • How to detect suspicious activity?
  • Generating an incident

Start Working with Sentinel- Manage and Investigate

  • What are Incidents?
  • Incident Management Lifecycle
  • Managing and Investigating Incidents with sentinel
  • Threat Hunting with sentinel

Start Working with Sentinel- Respond

  • Why Automation is needed?
  • Let’s talk about SOAR?
  • Get to know about Logic App.
  • What is Playbook?
  • Implement of Automation in the Sentinel

Additional Feature

  • Introduction of Watchlist.
  • Introduction of UEBA.
  • Introduction of Notebook.

Handle Security operations in Azure

  • What are Azure Policies?
  • Learn to configure Azure Policies
  • Introduction to Azure Security Centre
  • Work with security Centre

Need customized curriculum? Talk to Advisor

Microsoft Sentinel Course Advisor

Here's What people are saying about InfosecTrain

Benefits You Will Access Why Infosec Train

Student-infosectrain Certified & Experienced Instructors
24x71-infosectrain Post Training Support
tailor-infosectrain Customized Training
flexible-infosectrain Flexible Schedule
video1-infosectrain Access to Recorded Sessions

Microsoft Sentinel FAQs

1. What does the Microsoft Sentinel service entail?

Microsoft Sentinel is a ‘SIEM and SOAR service’ that provides a single solution for alert detection, threat awareness, proactive hunting, and threat response throughout the company, delivering intelligent security analytics and threat intelligence.

2. Is Microsoft Sentinel a Certification course?
No, Azure Sentinel is not a certification course. It is a part of Microsoft Azure Cloud solutions and usually used in security operations.
3. What is Microsoft Sentinel’s purpose?
For your whole organization, Microsoft Sentinel delivers sophisticated security insights at a cloud-scale. Microsoft Sentinel makes it simple to gather security data throughout your hybrid company, including devices, users, applications, and servers in any cloud.
4. Is Microsoft Sentinel a Platform as a Service (PaaS) or a Software as a Service (SaaS)?
Microsoft Sentinel can automate reaction utilizing coordination across your whole domain by leveraging cloud-scale data collecting and Microsoft’s own threat detection systems. Because it’s Software as a Service (SaaS), it’s flexible, and you only pay for what you use.
5. What programming language does Microsoft Sentinel employ?
In Microsoft Sentinel, KQL is the query language used to execute data analysis, build analytics, spreadsheets, and perform hunts.
6. Is Microsoft Sentinel a worthwhile investment?
Finally, Microsoft Sentinel is a robust SIEM that is well-suited to today’s technological scene. It gives you a bird’s-eye view of your complete IT infrastructure, as well as sophisticated analytics powered by superior artificial intelligence that can help you discover and respond to threats in real-time.
7. What is the architecture of the Microsoft Sentinel?
In Microsoft’s public cloud platform, Microsoft Sentinel is a SIEM (Security Information and Event Management) and Security Orchestration and Automated Response (SOAR) system. It may combine alert detection, threat visibility, proactive hunting, and threat response into a single solution.

Latest Blog Posts

Scenario-based Interview Prep Series on Cloud Security