For each and Condition checks in Security Automation

In this video you will learn how to leverage Controls like For each and Condition to run through each audit event and filter out unique email addresses of callers in the audit events. Troubleshoot a little bit around the Logic app. Finally send an email of the alert using a template format. Along the way you will be provided tips and tricks and learn some additional techniques in authoring Security Automation in Logic Apps. #MicrosoftSentinel #MicrosoftDefenderforCloud #LogicApps #SecurityAutomation #AzureSecurity

********************************** Links 🔗 ********************************** Walkthrough in blog:

Microsoft Sentinel Playbooks: https://github.com/Azure/Azure-Sentinel/tree/master/Playbooks Microsoft Defender for Cloud Workflow Automation: https://github.com/Azure/Azure-Security-Center/tree/main/Workflow%20automation

********************************** Chapters 📚 ****************************** 01:38 - Continuing to build out Logic App 04:10 - Build out For each loop and condition 07:40 - After condition check append caller email address to Variable 13:05 - Build an action send an email 16:45 - Use a logic app global parameter 19:45 - create and use a html email template from templated logic apps 24:39 - Troubleshooting time 31:30 - For each parallelism, concurrency controls 37:02 - Conclusion, on the next session

**************************** Music 🎶 & Credits 🧾 ************************** Illusion from A Year To Remember by Neaon Link: https://neaon.bandcamp.com/track/illusion