How does SC-200 address threat hunting?

SC-200 covers proactive threat hunting using Microsoft Sentinel queries, bookmarks, livestream, and notebooks.

The course includes a dedicated module on threat hunting.Participants learn to develop hypotheses, run queries, and use notebooks for advanced analysis.

Related Information

  • Threat hunting is a dedicated module.
  • Sentinel queries and notebooks are used.

Expert Insight

Threat hunting complements alert-based detection.

Perform threat hunting in Microsoft Sentinel.

Christophe MAZZOLA
Christophe MAZZOLA

ISO 27001 Lead Implementer • ISO 27001 Lead Auditor

Explore related training

Browse all: Microsoft Trainings

We use cookies to improve your experience

Necessary cookies are always active. You can accept, reject non-essential cookies, or customize your preferences.