SC-5001: Configure SIEM Security Operations Using Microsoft Sentinel Training

SC-5001 teaches you to use Microsoft Sentinel for security operations. You'll learn to collect security data, analyze threats, respond to incidents, and actively hunt for potential risks across your organization. It's built for people who want to run a security operations center, not just understand the theory.

📘 Security 👥 193 Enrolled ⏱️ 1 Day 💼 Intermediate Level ⭐ 4.9 | 33 Reviews

Why Microtek Learning?

500+

Courses

10+ Years

Experience

95K+

Global Learners

Virtual Instructor-Led Training

$599

Course Overview

This course covers configuring and managing SIEM operations using Microsoft Sentinel. You'll set up threat detection, build incident response workflows, and improve your organization's overall security posture. The training is practical and focused on the tasks you'd handle as a security operations specialist.

Mode of Training

🏫 Classroom 💻 Live Online 🧪 Blended 👨‍👩‍👧‍👦 Private Group

Upcoming Schedules

Start Date	Time	Duration	Mode	Price
May 11, 2026	9:00 am - 5:00 pm	1 Day	Online	$599	GTR
May 29, 2026	9:00 am - 5:00 pm	1 Day	Online	$599	GTR
Jun 12, 2026	9:00 am - 5:00 pm	1 Day	Online	$599	GTR
Jun 30, 2026	9:00 am - 5:00 pm	1 Day	Online	$599	GTR
Jul 13, 2026	9:00 am - 5:00 pm	1 Day	Online	$599	GTR

+ View more schedules

What you will learn

Create and manage Microsoft Sentinel workspaces
Connect Microsoft services to Microsoft Sentinel
Connect Windows hosts to Microsoft Sentinel
Threat detection with Microsoft Sentinel analytics
Automation in Microsoft Sentinel
Configure SIEM security operations using Microsoft Sentinel

Who Should Attend This Course?

Security Engineer
Security Analyst

Prerequisites

Fundamental understanding of Microsoft Azure
Basic understanding of Microsoft Sentinel
Experience using Kusto Query Language (KQL) in Microsoft Sentinel

📞 Talk to a Learning Advisor

📘 SC-5001: Configure SIEM Security Operations Using Microsoft Sentinel Outline

Describe Microsoft Sentinel workspace architecture
Install Microsoft Sentinel workspace
Manage a Microsoft Sentinel workspace

Connect Microsoft service connectors
Explain how connectors auto-create incidents in Microsoft Sentinel

Connect Azure Windows Virtual Machines to Microsoft Sentinel
Connect non-Azure Windows hosts to Microsoft Sentinel
Configure Log Analytics agent to collect Sysmon events

Explain the importance of Microsoft Sentinel Analytics
Explain different types of analytics rules
Create rules from templates
Create new analytics rules and queries using the analytics rule wizard
Manage rules with modifications
Lab: Detect threats with Microsoft Sentinel analytics
Lab: Detect threats with Microsoft Sentinel analytics

Explain automation options in Microsoft Sentinel
Create automation rules in Microsoft Sentinel

Still have questions?

Reach out to our learning advisors for personalized guidance on choosing the right course, group training, or enterprise packages.

📞 Talk to an Advisor

What You Get with Microtek Learning

Instructor-Led Excellence

✓ Certified Instructor-led Training
✓ Top Industry Trainers
✓ Official Student Handbooks

Measurable Learning Outcomes

✓ Pre- & Post-Training Assessments
✓ Practice Tests
✓ Exam-Oriented Curriculum

Real-World Skill Building

✓ Hands-on Activities & Scenarios
✓ Interactive Online Courses
✓ Peer Collaboration (Not in self-paced)

Full Support & Perks

✓ Exam Scheduling Support ^*
✓ Learn & Earn Program ^*
✓ Support from Certified Experts
✓ Gov. & Private Pricing ^*

Our Clients

For over 10 years, Microtek Learning has helped organizations, leaders, students and professionals to reach their maximum potential. We have led the path by addressing their challenges and advancing their performances.