Enhance security operations by using Microsoft Security Copilot is a Microsoft Learn-based course for security analysts and engineers who want to use Microsoft’s AI-powered security assistant to accelerate their workflows. Students learn to use Security Copilot’s natural language interface to investigate incidents, summarize threats, analyse scripts and code, generate KQL queries, and integrate Security Copilot into Microsoft Sentinel and Defender XDR investigation workflows.
What You Will Learn
- Set up and navigate Microsoft Security Copilot and use standalone and embedded experiences
- Use Security Copilot to summarize security incidents, triage alerts, and prioritize response
- Analyse threat intelligence, suspicious scripts, and file hashes using Security Copilot
- Generate KQL hunting queries and explain complex security data using natural language prompts
- Use Security Copilot promptbooks to automate repetitive security analysis workflows
Who Should Attend
SOC analysts, security engineers, and threat hunters who use Microsoft security tools and want to leverage AI to work faster and more effectively.
Prerequisites
Security operations experience and working knowledge of Microsoft Sentinel or Microsoft Defender XDR.
