Merge pull request #99817 from yoavfrancis/patch-50

PRMerger6 · web-flow · commit 1b9dcab7a500 · 2019-12-29T01:04:40.000-08:00
Added section for activity log
diff --git a/articles/security-center/security-center-alerts-overview.md b/articles/security-center/security-center-alerts-overview.md
@@ -109,6 +109,10 @@ A security incident is a collection of related alerts, instead of listing each a
 
 Using incidents, Security Center provides you with a single view of an attack campaign and all of the related alerts. This view enables you to quickly understand what actions the attacker took, and what resources were affected. For more information, see [Cloud smart alert correlation](security-center-alerts-cloud-smart.md).
 
+## Security alerts in Azure Activity Log
+
+In addition to being available in the Azure Portal or programmatically, Security alerts and incidents are audited as events in [Azure Activity Log](https://docs.microsoft.com/azure/azure-monitor/platform/activity-log-view). For more information on the event schema, see [Security Alerts in Azure Activity log](https://go.microsoft.com/fwlink/?linkid=2114113).
+
 ## Next steps
 
 In this article, you learned about the different types of alerts available in Security Center. For more information, see:
