Apply suggestions from code review

batamig · web-flow · commit 84dc537104c4 · 2024-09-08T19:40:50.000+03:00
diff --git a/articles/sentinel/connect-custom-logs.md b/articles/sentinel/connect-custom-logs.md
@@ -7,7 +7,7 @@ ms.date: 06/05/2023
 ms.author: yelevin
 
 
-#Customer intent: [AI]As a security analyst, I want to collect and analyze custom log data from various sources so that I can monitor and detect potential threats using a centralized SIEM solution.
+#Customer intent: [AI]As a security analyst, I want to collect and analyze custom log data from various sources so that I can monitor and detect potential threats using Microsoft Sentinel.
 
 ---
 
diff --git a/articles/sentinel/connect-data-sources.md b/articles/sentinel/connect-data-sources.md
@@ -12,7 +12,7 @@ ms.collection: usx-security
 #customer intent: As a security architect or SOC analyst, I want to understand what data connectors are in Microsoft Sentinel.
 
 
-#Customer intent: [AI]As a security analyst, I want to use data connectors to integrate various data sources into my SIEM platform so that I can enhance threat detection and response capabilities.
+#Customer intent: [AI]As a security analyst, I want to use data connectors to integrate various data sources into Microsoft Sentinel so that I can enhance threat detection and response capabilities.
 
 ---
 
diff --git a/articles/sentinel/connect-defender-for-cloud.md b/articles/sentinel/connect-defender-for-cloud.md
@@ -7,7 +7,7 @@ ms.date: 11/09/2021
 ms.author: yelevin
 
 
-#Customer intent: [AI]As a security operations analyst, I want to integrate and synchronize alerts from cloud security tools into a centralized SIEM platform so that I can efficiently monitor, analyze, and respond to security incidents across my organization's hybrid and multicloud environments.
+#Customer intent: [AI]As a security analyst, I want to integrate and synchronize alerts from cloud security tools into Microsoft Sentinel so that I can efficiently monitor, analyze, and respond to security incidents across my organization's hybrid and multicloud environments.
 
 ---
 
diff --git a/articles/sentinel/connect-log-forwarder.md b/articles/sentinel/connect-log-forwarder.md
@@ -7,7 +7,7 @@ ms.topic: how-to
 ms.date: 06/18/2024
 
 
-#Customer intent: [AI]As a security operations analyst, I want to deploy a log forwarder to ingest Syslog and CEF logs so that I can centralize and analyze security data in my SIEM solution.
+#Customer intent: [AI]As a security engineer, I want to deploy a log forwarder to ingest Syslog and CEF logs so that I can centralize and analyze security data in Microsoft Sentinel.
 
 ---
 
diff --git a/articles/sentinel/connect-logstash.md b/articles/sentinel/connect-logstash.md
@@ -8,7 +8,7 @@ ms.date: 11/09/2021
 ms.author: yelevin
 
 
-#Customer intent: [AI]As a security engineer, I want to use Logstash to stream logs to a cloud-based SIEM platform so that I can centralize and analyze log data for threat detection and response.
+#Customer intent: [AI]As a security engineer, I want to use Logstash to stream logs to Microsoft Sentinel so that I can centralize and analyze log data for threat detection and response.
 
 ---
 
diff --git a/articles/sentinel/connect-microsoft-365-defender.md b/articles/sentinel/connect-microsoft-365-defender.md
@@ -10,7 +10,7 @@ appliesto:
 ms.collection: usx-security
 
 
-#Customer intent: [AI]As a security operations analyst, I want to integrate Microsoft Defender XDR data with Microsoft Sentinel so that I can centralize and streamline incident management and advanced threat hunting.
+#Customer intent: [AI]As a security engineer, I want to integrate Microsoft Defender XDR data with Microsoft Sentinel so that I can centralize and streamline incident management and advanced threat hunting.
 
 ---
 
diff --git a/articles/sentinel/connect-rest-api-template.md b/articles/sentinel/connect-rest-api-template.md
@@ -7,7 +7,7 @@ ms.date: 06/05/2023
 ms.author: yelevin
 
 
-#Customer intent: [AI]As a security analyst, I want to connect my data source to a cloud-based SIEM API so that I can ingest and analyze security data from third-party products.
+#Customer intent: [AI]As a security engineer, I want to connect my data source to the Microsoft Sentinel API so that I can ingest and analyze security data from third-party products.
 
 ---
 
diff --git a/articles/sentinel/connect-services-api-based.md b/articles/sentinel/connect-services-api-based.md
@@ -7,7 +7,7 @@ ms.date: 02/24/2023
 ms.author: yelevin
 
 
-#Customer intent: [AI]As a security analyst, I want to connect various Microsoft services to Microsoft Sentinel using API-based data connectors so that I can centralize and streamline security event monitoring and incident management.
+#Customer intent: [AI]As a security engineer, I want to connect various Microsoft services to Microsoft Sentinel using API-based data connectors so that I can centralize and streamline security event monitoring and incident management.
 
 ---
 
diff --git a/articles/sentinel/connect-services-diagnostic-setting-based.md b/articles/sentinel/connect-services-diagnostic-setting-based.md
@@ -7,7 +7,7 @@ ms.date: 02/24/2023
 ms.author: yelevin
 
 
-#Customer intent: [AI]As a security operations analyst, I want to connect Microsoft Sentinel to various data sources using diagnostic settings-based connections so that I can ingest and monitor logs and metrics for enhanced threat detection and response.
+#Customer intent: [AI]As a security engineer, I want to connect Microsoft Sentinel to various data sources using diagnostic settings-based connections so that I can ingest and monitor logs and metrics for enhanced threat detection and response.
 
 ---
 
diff --git a/articles/sentinel/connect-services-windows-based.md b/articles/sentinel/connect-services-windows-based.md
@@ -7,7 +7,7 @@ ms.date: 07/18/2023
 ms.author: yelevin
 
 
-#Customer intent: [AI]As a security operations analyst, I want to connect Microsoft Sentinel to various data sources using Windows agent-based connectors so that I can efficiently ingest and manage security event data for comprehensive threat detection and response.
+#Customer intent: [AI]As a security engineer, I want to connect Microsoft Sentinel to various data sources using Windows agent-based connectors so that I can efficiently ingest and manage security event data for comprehensive threat detection and response.
 
 ---
 
diff --git a/articles/sentinel/connect-syslog.md b/articles/sentinel/connect-syslog.md
@@ -8,7 +8,7 @@ ms.custom: linux-related-content
 ms.date: 06/18/2024
 
 
-#Customer intent: [AI]As a security operations analyst, I want to configure Syslog data collection from Linux-based sources so that I can monitor and analyze security events in a centralized platform.
+#Customer intent: [AI]As a security engineer, I want to configure Syslog data collection from Linux-based sources so that I can monitor and analyze security events in a centralized platform.
 
 ---
 
diff --git a/articles/sentinel/create-incident-manually.md b/articles/sentinel/create-incident-manually.md
@@ -7,7 +7,7 @@ ms.topic: how-to
 ms.date: 08/17/2022
 
 
-#Customer intent: [AI]As a security analyst, I want to manually create incidents in my SIEM solution so that I can investigate and respond to threats not automatically detected or ingested from external systems.
+#Customer intent: [AI]As a security analyst, I want to manually create incidents in Microsoft Sentinel so that I can investigate and respond to threats not automatically detected or ingested from external systems.
 
 ---
 
diff --git a/articles/sentinel/create-incidents-from-alerts.md b/articles/sentinel/create-incidents-from-alerts.md
@@ -8,7 +8,7 @@ ms.date: 05/29/2024
 ms.author: yelevin
 
 
-#Customer intent: [AI]As a security operations analyst, I want to automatically create incidents from security alerts so that I can streamline incident management and improve response times.
+#Customer intent: [AI]As a security analyst, I want to automatically create incidents from security alerts so that I can streamline incident management and improve response times.
 
 ---
 
diff --git a/articles/sentinel/data-transformation.md b/articles/sentinel/data-transformation.md
@@ -7,7 +7,7 @@ ms.topic: conceptual
 ms.date: 02/27/2022
 
 
-#Customer intent: [AI]As a security analyst, I want to customize data ingestion and transformation in my SIEM solution so that I can filter, enrich, and secure log data efficiently.
+#Customer intent: [AI]As a security analyst, I want to customize data ingestion and transformation in Microsoft Sentinel so that I can filter, enrich, and secure log data efficiently.
 
 ---
 
diff --git a/articles/sentinel/delete-incident.md b/articles/sentinel/delete-incident.md
@@ -7,7 +7,7 @@ ms.topic: how-to
 ms.date: 08/22/2022
 
 
-#Customer intent: [AI]As a security operations center (SOC) analyst, I want to delete duplicate or erroneous incidents in my incident management system so that I can maintain an accurate and efficient incident queue.
+#Customer intent: [AI]As a security analyst, I want to delete duplicate or erroneous incidents in my incident management system so that I can maintain an accurate and efficient incident queue.
 
 ---
 
diff --git a/articles/sentinel/detection-tuning.md b/articles/sentinel/detection-tuning.md
@@ -7,7 +7,7 @@ ms.topic: how-to
 ms.date: 11/09/2021
 
 
-#Customer intent: [AI]As a security analyst, I want to receive fine-tuning recommendations for my SIEM analytics rules so that I can optimize threat detection and reduce false positives.
+#Customer intent: [AI]As a security analyst, I want to receive fine-tuning recommendations for my Microsoft Sentinel analytics rules so that I can optimize threat detection and reduce false positives.
 
 ---
 
diff --git a/articles/sentinel/enable-enrichment-widgets.md b/articles/sentinel/enable-enrichment-widgets.md
@@ -7,7 +7,7 @@ ms.topic: how-to
 ms.date: 11/15/2023
 
 
-#Customer intent: [AI]As a security analyst, I want to enable and configure enrichment widgets in my SIEM platform so that I can gain actionable intelligence and make better, faster decisions regarding potential security threats.
+#Customer intent: [AI]As a security analyst, I want to configure enrichment widgets in Microsoft Sentinel so that I can gain actionable intelligence and make better, faster decisions regarding potential security threats.
 
 ---
 
diff --git a/articles/sentinel/enable-entity-behavior-analytics.md b/articles/sentinel/enable-entity-behavior-analytics.md
@@ -11,7 +11,7 @@ appliesto:
 ms.collection: usx-security
 
 
-#Customer intent: [AI]As a security analyst, I want to enable and configure User and Entity Behavior Analytics (UEBA) in my SIEM platform so that I can detect and analyze anomalous activities more effectively.
+#Customer intent: [AI]As a security analyst, I want to configure User and Entity Behavior Analytics (UEBA) in Microsoft Sentinel so that I can detect and analyze anomalous activities more effectively.
 
 ---
 
diff --git a/articles/sentinel/entities-reference.md b/articles/sentinel/entities-reference.md
@@ -7,7 +7,7 @@ ms.topic: reference
 ms.date: 06/09/2024
 
 
-#Customer intent: [AI]As a security analyst, I want to understand the entity types and identifiers in my security operations platform so that I can effectively track and investigate alerts and incidents.
+#Customer intent: [AI]As a security analyst, I want to understand the entity types and identifiers in Microsoft Sentinel so that I can effectively track and investigate alerts and incidents.
 
 ---
 
diff --git a/articles/sentinel/entity-pages.md b/articles/sentinel/entity-pages.md
@@ -11,7 +11,7 @@ appliesto:
 ms.collection: usx-security
 
 
-#Customer intent: [AI]As a security analyst, I want to access detailed entity pages in my SIEM tool so that I can efficiently investigate and respond to security incidents.
+#Customer intent: [AI]As a security analyst, I want to access detailed entity pages in Microsoft Sentinel so that I can efficiently investigate and respond to security incidents.
 
 ---
 
diff --git a/articles/sentinel/extend-sentinel-across-workspaces-tenants.md b/articles/sentinel/extend-sentinel-across-workspaces-tenants.md
@@ -5,10 +5,9 @@ author: yelevin
 ms.topic: how-to
 ms.date: 06/28/2023
 ms.author: yelevin
-#Customer intent: As a security operator, I want to extend my workspace so I can query and analyze data across workspaces and tenants.
 
 
-#Customer intent: [AI]As a security operations center (SOC) analyst, I want to manage and query data across multiple workspaces and tenants so that I can centralize incident management and enhance threat detection capabilities.
+#Customer intent: [AI]As a security analyst, I want to query data across multiple workspaces and tenants so that I can centralize incident management and enhance threat detection capabilities.
 
 ---
 
diff --git a/articles/sentinel/import-export-analytics-rules.md b/articles/sentinel/import-export-analytics-rules.md
@@ -7,7 +7,7 @@ ms.date: 11/09/2021
 ms.author: yelevin
 
 
-#Customer intent: [AI]As a security operations engineer, I want to export and import analytics rules using ARM templates so that I can manage and control my Sentinel deployments as code.
+#Customer intent: [AI]As a security engineer, I want to export and import analytics rules using ARM templates so that I can manage and control my Microsoft Sentinel deployments as code.
 
 ---
 
diff --git a/articles/sentinel/incident-investigation.md b/articles/sentinel/incident-investigation.md
@@ -7,7 +7,7 @@ ms.topic: conceptual
 ms.date: 01/01/2023
 
 
-#Customer intent: [AI]As a SOC analyst, I want to utilize a comprehensive case management platform for incident investigation so that I can efficiently manage and resolve security threats.
+#Customer intent: [AI]As a security analyst, I want to use Microsoft Sentinel for incident investigation so that I can efficiently manage and resolve security threats.
 
 ---
 
diff --git a/articles/sentinel/incident-tasks.md b/articles/sentinel/incident-tasks.md
@@ -7,7 +7,7 @@ ms.topic: conceptual
 ms.date: 11/14/2022
 
 
-#Customer intent: [AI]As a SOC manager, I want to standardize incident response tasks using automation rules and playbooks so that my team can handle incidents consistently and efficiently.
+#Customer intent: [AI]As a security operations manager, I want to standardize incident response tasks using automation rules and playbooks so that my team can handle incidents consistently and efficiently.
 
 ---
 
diff --git a/articles/sentinel/ingest-defender-for-cloud-incidents.md b/articles/sentinel/ingest-defender-for-cloud-incidents.md
@@ -7,7 +7,7 @@ ms.topic: conceptual
 ms.date: 04/16/2024
 
 
-#Customer intent: [AI]As a security operations analyst, I want to integrate Microsoft Defender for Cloud with Microsoft Defender XDR so that I can ingest and synchronize incidents and alerts into Microsoft Sentinel for comprehensive threat detection and response.
+#Customer intent: [AI]As a security analyst, I want to integrate Microsoft Defender for Cloud with Microsoft Defender XDR so that I can ingest and synchronize incidents and alerts into Microsoft Sentinel for comprehensive threat detection and response.
 
 ---
 
diff --git a/articles/sentinel/investigate-cases.md b/articles/sentinel/investigate-cases.md
@@ -7,7 +7,7 @@ ms.date: 03/30/2022
 ms.author: yelevin
 
 
-#Customer intent: [AI]As a security operations analyst, I want to investigate and manage security incidents using advanced analytics and visualization tools so that I can effectively identify, understand, and respond to potential threats.
+#Customer intent: [AI]As a security analyst, I want to investigate and manage security incidents using advanced analytics and visualization tools so that I can effectively identify, understand, and respond to potential threats.
 
 ---
 
diff --git a/articles/sentinel/investigate-incidents.md b/articles/sentinel/investigate-incidents.md
@@ -7,7 +7,7 @@ ms.topic: how-to
 ms.date: 01/17/2023
 
 
-#Customer intent: [AI]As a security operations analyst, I want to efficiently navigate and investigate security incidents using a comprehensive case management platform so that I can reduce the mean time to resolve (MTTR) and ensure effective incident response.
+#Customer intent: [AI]As a security analyst, I want to efficiently investigate security incidents using a comprehensive case management platform so that I can reduce the mean time to resolve (MTTR) and ensure effective incident response.
 
 ---
 
diff --git a/articles/sentinel/kusto-overview.md b/articles/sentinel/kusto-overview.md
@@ -7,7 +7,7 @@ ms.topic: conceptual
 ms.date: 01/06/2022
 
 
-#Customer intent: [AI]As a security analyst, I want to learn and use Kusto Query Language so that I can effectively analyze and manipulate data in my SIEM for threat detection and incident response.
+#Customer intent: [AI]As a security analyst, I want to learn and use Kusto Query Language so that I can effectively analyze and manipulate data in Microsoft Sentinel for threat detection and incident response.
 
 ---
 
diff --git a/articles/sentinel/kusto-resources.md b/articles/sentinel/kusto-resources.md
@@ -7,7 +7,7 @@ ms.date: 01/10/2022
 ms.author: yelevin
 
 
-#Customer intent: [AI]As a security engineer or analyst, I want to access resources for learning Kusto Query Language (KQL) so that I can effectively utilize Microsoft Sentinel for analytics, workbooks, and hunting.
+#Customer intent: [AI]As a security engineer or analyst, I want to access resources for learning Kusto Query Language (KQL) so that I can effectively use Microsoft Sentinel for analytics, workbooks, and hunting.
 
 ---
 
diff --git a/articles/sentinel/manage-analytics-rule-templates.md b/articles/sentinel/manage-analytics-rule-templates.md
@@ -7,7 +7,7 @@ ms.date: 11/09/2021
 ms.author: yelevin
 
 
-#Customer intent: [AI]As a security operations analyst, I want to manage and update analytics rule templates so that I can ensure my threat detection rules are current and effective.
+#Customer intent: [AI]As a security analyst, I want to manage and update analytics rule templates so that I can ensure my threat detection rules are current and effective.
 
 ---
 
diff --git a/articles/sentinel/manage-soc-with-incident-metrics.md b/articles/sentinel/manage-soc-with-incident-metrics.md
@@ -8,7 +8,7 @@ ms.date: 11/09/2021
 ms.author: yelevin
 
 
-#Customer intent: [AI]As a SOC manager, I want to access and analyze incident metrics using customizable workbooks and queries so that I can monitor and improve my team's performance and efficiency.
+#Customer intent: [AI]As a security operations manager, I want to analyze incident metrics using customizable workbooks and queries so that I can monitor and improve my team's performance and efficiency.
 
 ---
 
diff --git a/articles/sentinel/microsoft-365-defender-sentinel-integration.md b/articles/sentinel/microsoft-365-defender-sentinel-integration.md
@@ -8,10 +8,9 @@ ms.date: 07/11/2024
 appliesto:
 - Microsoft Sentinel in the Azure portal and the Microsoft Defender portal
 ms.collection: usx-security
-#customer intent: As a SOC admin, I want to integrate Microsoft Defender XDR with Microsoft Sentinel so my security operations center can work in a unified incident queue. 
 
 
-#Customer intent: [AI]As a SecOps professional, I want to integrate Microsoft Defender XDR with Microsoft Sentinel so that I can streamline incident management and enhance threat detection across my organization's security operations.
+#Customer intent: [AI]As a security engineer, I want to integrate Microsoft Defender XDR with Microsoft Sentinel so that I can streamline incident management and enhance threat detection across my organization's security operations.
 
 ---
 
diff --git a/articles/sentinel/monitor-analytics-rule-integrity.md b/articles/sentinel/monitor-analytics-rule-integrity.md
@@ -7,7 +7,7 @@ ms.topic: conceptual
 ms.date: 02/20/2023
 
 
-#Customer intent: [AI]As a security operations analyst, I want to monitor and audit the health and integrity of my analytics rules so that I can ensure uninterrupted and tampering-free threat detection.
+#Customer intent: [AI]As a security analyst, I want to monitor and audit the health and integrity of my analytics rules so that I can ensure uninterrupted and tampering-free threat detection.
 
 ---
 
diff --git a/articles/sentinel/monitor-data-connector-health.md b/articles/sentinel/monitor-data-connector-health.md
@@ -8,7 +8,7 @@ ms.date: 02/11/2024
 ms.service: microsoft-sentinel
 
 
-#Customer intent: [AI]As a security operations analyst, I want to monitor the health and performance of my data connectors so that I can ensure uninterrupted data ingestion and quickly address any issues.
+#Customer intent: [AI]As a security analyst, I want to monitor the health and performance of my data connectors so that I can ensure uninterrupted data ingestion and quickly address any issues.
 
 ---
 
diff --git a/articles/sentinel/monitor-your-data.md b/articles/sentinel/monitor-your-data.md
@@ -11,7 +11,7 @@ appliesto:
 ms.collection: usx-security
 
 
-#Customer intent: [AI]As a security analyst, I want to create and customize workbooks in a cloud-based SIEM platform so that I can visualize and monitor security data effectively.
+#Customer intent: [AI]As a security analyst, I want to create and customize workbooks in Microsoft Sentinel so that I can visualize and monitor security data effectively.
 
 ---
 
diff --git a/articles/sentinel/powerbi.md b/articles/sentinel/powerbi.md
@@ -7,7 +7,7 @@ ms.topic: how-to
 ms.date: 05/19/2024
 
 
-#Customer intent: [AI]As a security analyst, I want to create and share Power BI reports from Microsoft Sentinel data so that I can provide insights to stakeholders without granting them direct access to Sentinel.
+#Customer intent: [AI]As a security analyst, I want to create and share Power BI reports from Microsoft Sentinel data so that I can provide insights to stakeholders without granting them direct access to Microsoft Sentinel.
 
 ---
 
diff --git a/articles/sentinel/quickstart-onboard.md b/articles/sentinel/quickstart-onboard.md
@@ -9,7 +9,7 @@ ms.custom: references_regions, mode-other
 #Customer intent: As a security operator, set up data connectors in one place so I can monitor and protect my environment.
 
 
-#Customer intent: [AI]As a security operations analyst, I want to onboard and configure a cloud-based SIEM solution so that I can ingest and monitor security data from various sources for threat detection and response.
+#Customer intent: [AI]As a security analyst, I want to onboard to Microsoft Sentinel so that I can ingest and monitor security data from various sources for threat detection and response.
 
 ---
 
diff --git a/articles/sentinel/relate-alerts-to-incidents.md b/articles/sentinel/relate-alerts-to-incidents.md
@@ -7,7 +7,7 @@ ms.topic: how-to
 ms.date: 01/17/2023
 
 
-#Customer intent: [AI]As a security analyst, I want to relate alerts to incidents in my SIEM system so that I can refine and expand the scope of my investigations efficiently.
+#Customer intent: [AI]As a security analyst, I want to relate alerts to incidents in Microsoft Sentinel so that I can refine and expand the scope of my investigations efficiently.
 
 ---
 
diff --git a/articles/sentinel/roles.md b/articles/sentinel/roles.md
@@ -11,7 +11,7 @@ appliesto:
     - Microsoft Sentinel in the Microsoft Defender portal
 
 
-#Customer intent: [AI]As a security operations manager, I want to assign appropriate roles and permissions in our cloud security platform so that my team can effectively manage incidents, automate responses, and access necessary data without compromising security.
+#Customer intent: [AI]As a security operations manager, I want to assign appropriate roles and permissions in Microsoft Sentinel so that my team can effectively manage incidents, automate responses, and access necessary data without compromising security.
 
 ---
 
diff --git a/articles/sentinel/sap/configuration-file-reference.md b/articles/sentinel/sap/configuration-file-reference.md
@@ -7,7 +7,7 @@ ms.topic: reference
 ms.date: 03/02/2022
 
 
-#Customer intent: [AI]As a developer, I want to reference configuration file documentation so that I can correctly set up and manage my application's settings.
+#Customer intent: [AI]As a security engineer, I want to reference configuration file documentation so that I can correctly set up and manage my settings for Microsoft Sentinel's integration with SAP.
 
 ---
 
diff --git a/articles/sentinel/sap/configure-audit.md b/articles/sentinel/sap/configure-audit.md
diff --git a/articles/sentinel/sap/reference-update.md b/articles/sentinel/sap/reference-update.md
diff --git a/articles/sentinel/top-workbooks.md b/articles/sentinel/top-workbooks.md
diff --git a/articles/sentinel/troubleshoot-analytics-rules.md b/articles/sentinel/troubleshoot-analytics-rules.md
diff --git a/articles/sentinel/whats-new.md b/articles/sentinel/whats-new.md
diff --git a/articles/sentinel/windows-security-event-id-reference.md b/articles/sentinel/windows-security-event-id-reference.md
diff --git a/articles/sentinel/work-with-tasks.md b/articles/sentinel/work-with-tasks.md
