3-Day Instructor-Led Programme
Deploy and operate Microsoft Sentinel with KQL, analytics rules, and automation playbooks. Learn through mentor-led SOC scenarios with threat intelligence and real-world investigations.
Duration
3 Days
Price
$1,999
Microsoft Sentinel Specialist equips professionals with the skills to deploy and operate a cloud-native SIEM and SOAR platform using Microsoft Sentinel. The course focuses on real-world SOC use cases including log ingestion, detection engineering, and automated response.
Through mentor-led sessions and hands-on labs, learners will write KQL queries, configure analytics rules, build workbooks, and integrate threat intelligence feeds. The programme also explores automation playbooks to streamline incident response and reduce manual effort.
By the end of the course, participants will be able to manage security operations using Sentinel, detect and investigate threats, and automate response workflows. This course is ideal for professionals working in modern cloud-based SOC environments.
Deploy Sentinel, write KQL queries, create analytics rules, and automate responses in lab-based SOC scenarios.
Mentors guide SIEM configuration, KQL optimisation, and incident investigation techniques
Develop cloud SIEM, detection engineering, and SOAR automation capabilities.
Deploy and configure Microsoft Sentinel
Write and optimise KQL queries
Implement analytics rules and alerts
Automate response with playbooks
Integrate threat intelligence feeds
Investigate and respond to incidents
Basic understanding of cybersecurity concepts
Familiarity with cloud platforms (Azure preferred)
Basic knowledge of logs and monitoring
Step-by-step learning journey from basics to professional practice
Master these in-demand skills through hands-on practice
A clear view of the roles this programme supports, what typically comes next, and where learners progress over time
Choose the learning format that works best for you and your team
Instructor-Led Training
Join live instructor-led sessions from anywhere. Interactive, engaging, and flexible.
Price per person
Group enrolments and early planning options available.
All prices are exclusive of VAT where applicable. Group enrolments and custom packages available on request.
Not everyone learns best in a group. If you want focused guidance, faster clarity, and confidence you can use on the job, our 1-to-1 Fast-Track Training gives you private, mentor-led support tailored to your experience and goals.
"Many learners choose 1-to-1 when they want understanding, not memorisation."
Everything you need to know about the certification exams
You will receive an Xcademia certificate of completion based on participation and successful completion of labs and scenario simulations.
Everything you need to know about this course
It is a cloud-native SIEM and SOAR platform for security operations.
Take the next step in your professional development