Skip to content

Commit 6cc32d5

Browse files
committed
edits
1 parent 3274af8 commit 6cc32d5

File tree

2 files changed

+4
-12
lines changed

2 files changed

+4
-12
lines changed

articles/sentinel/soc-optimization/soc-optimization-access.md

Lines changed: 3 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -61,15 +61,6 @@ Optimization metrics shown at the top of the **Overview** tab give you a high le
6161

6262
Supported metrics at the top of the **Overview** tab include:
6363

64-
### [Azure portal](#tab/azure-portal)
65-
66-
|Title |Description |
67-
|---------|---------|
68-
| **Ingested data over the last 3 months** | Shows the total data ingested in your workspace over the last three months. |
69-
|**Optimizations status** | Shows the number of recommended optimizations that are currently active, completed, and dismissed. |
70-
71-
Select **See all threat scenarios** to view the full list of relevant threat and risk-based scenarios, percentages of active and recommended analytics rules, and coverage levels.
72-
7364
### [Defender portal](#tab/defender-portal)
7465

7566
|Title | Description |
@@ -86,7 +77,7 @@ Select **See all threat scenarios** to view the full list of relevant threat and
8677
| **Ingested data over the last 3 months** | Shows the total data ingested in your workspace over the last three months. |
8778
|**Optimizations status** | Shows the number of recommended optimizations that are currently active, completed, and dismissed. |
8879

89-
Select **See all threat scenarios** to view the full list of relevant threats, percentages of active and recommended analytics rules, and coverage levels.
80+
Select **See all threat scenarios** to view the full list of relevant threat and risk-based scenarios, percentages of active and recommended analytics rules, and coverage levels.
9081

9182
---
9283

@@ -116,7 +107,8 @@ Filter the optimizations based on optimization type, or search for a specific op
116107

117108
- **Coverage** : Includes recommendations to help you close coverage gaps against specific threats and tighten your ingestion rates against data that doesn't provide security value. Includes:
118109
- **Threat-based recommendations** for adding security controls to help close coverage gaps for various types of attacks.
119-
- **AI MITRE ATT&CK recommendations** for adding tagging recommendations to help close coverage gaps for various types of attacks, based on the MITRE ATT&CK framework. - **Risk-based recommendations** for adding security controls to help close coverage gaps for various types of business risks.
110+
- **AI MITRE ATT&CK recommendations** for adding tagging recommendations to help close coverage gaps for various types of attacks, based on the MITRE ATT&CK framework.
111+
- **Risk-based recommendations** for adding security controls to help close coverage gaps for various types of business risks.
120112
- **Data value**: Includes recommendations that suggest ways to improve your data usage for maximizing security value from ingested data, or suggest a better data plan for your organization.
121113

122114
### View optimization details and take action

articles/sentinel/soc-optimization/soc-optimization-reference.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -27,7 +27,7 @@ Microsoft Sentinel SOC optimizations include the following types of recommendati
2727

2828
- **Coverage based recommendations** suggest adding controls to prevent coverage gaps that can lead to vulnerability to attacks or scenarios that can lead to financial loss.
2929
- **Threat-based recommendations** suggest adding security controls that help you detect coverage gaps to prevent attacks and vulnerabilities.
30-
- **AI MITRE ATT&CK tagging recommendations (Preview)** increase security coverage using artificial intelligence to automatically tag security detections with MITRE ATT&CK tactics and techniques.
30+
- **AI MITRE ATT&CK tagging recommendations (Preview)** uses artificial intelligence to suggest tagging security detections with MITRE ATT&CK tactics and techniques.
3131
- **Risk-based recommendations (Preview)** suggest adding controls to detect coverage gaps that correlate with use cases that could lead to business risks and financial loss, including Operational, Financial, Reputational, Compliance, and Legal business risks.
3232

3333
- **Similar organizations recommendations** suggest ingesting data from the types of sources used by organizations which have similar ingestion trends and industry profiles to yours.

0 commit comments

Comments
 (0)