{"id":990061,"date":"2024-12-30T17:46:32","date_gmt":"2024-12-30T15:46:32","guid":{"rendered":"http:\/\/16.171.239.15\/?p=990061"},"modified":"2025-01-10T15:56:51","modified_gmt":"2025-01-10T13:56:51","slug":"siirtyminen-legacy-siemsta-microsoft-sentineliin","status":"publish","type":"post","link":"https:\/\/www.tekve.fi\/en\/siirtyminen-legacy-siemsta-microsoft-sentineliin\/","title":{"rendered":"Siirtyminen legacy SIEM:st\u00e4 Microsoft Sentineliin"},"content":{"rendered":"<div data-elementor-type=\"wp-post\" data-elementor-id=\"990061\" class=\"elementor elementor-990061\" data-elementor-post-type=\"post\">\n\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-15fe60d elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"15fe60d\" data-element_type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-no\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-0073a0d\" data-id=\"0073a0d\" data-element_type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-a701276 elementor-invisible elementor-widget elementor-widget-progress-tracker\" data-id=\"a701276\" data-element_type=\"widget\" data-settings=\"{&quot;relative_to&quot;:&quot;post_content&quot;,&quot;sticky&quot;:&quot;bottom&quot;,&quot;sticky_offset&quot;:20,&quot;sticky_offset_mobile&quot;:20,&quot;sticky_parent&quot;:&quot;yes&quot;,&quot;_animation&quot;:&quot;slideInDown&quot;,&quot;type&quot;:&quot;horizontal&quot;,&quot;sticky_on&quot;:[&quot;desktop&quot;,&quot;tablet&quot;,&quot;mobile&quot;],&quot;sticky_effects_offset&quot;:0,&quot;sticky_anchor_link_offset&quot;:0}\" data-widget_type=\"progress-tracker.default\">\n\t\t\t\t\t\n\t\t<div class=\"elementor-scrolling-tracker elementor-scrolling-tracker-horizontal elementor-scrolling-tracker-alignment-\">\n\t\t\t\t\t\t<div class=\"current-progress\">\n\t\t\t\t\t<div class=\"current-progress-percentage\"><\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-1528556 elementor-widget elementor-widget-text-editor\" data-id=\"1528556\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p id=\"3182\" class=\"pw-post-body-paragraph ma mb fq mc b md me mf mg mh mi mj mk ml mm mn mo mp mq mr ms mt mu mv mw mx fj bk\" data-selectable-paragraph=\"\">Microsoft Sentinel on kustannustehokas ja nopeasti skaalautuva SIEM\/SOAR j\u00e4rjestelm\u00e4, jonka avulla organisaatio voi turvata on-premises j\u00e4rjestelm\u00e4t\u00a0<strong class=\"mc fr\">ja<\/strong>\u00a0pilvess\u00e4 sijaitsevat resurssit. Kun lokidataa syntyy lis\u00e4\u00e4, niin tilaa voidaan ostaa maksukorttia heiluttamalla eik\u00e4 tarvitse odottaa uuden tallennustilan saapumista omaan on-premises yksikk\u00f6\u00f6n.<\/p><p id=\"fc7b\" class=\"pw-post-body-paragraph ma mb fq mc b md me mf mg mh mi mj mk ml mm mn mo mp mq mr ms mt mu mv mw mx fj bk\" data-selectable-paragraph=\"\">Organisaatioilla voi olla k\u00e4yt\u00f6ss\u00e4 perinteinen on-premises valvontaj\u00e4rjestelm\u00e4 (SIEM), jonka k\u00e4ytt\u00e4minen on jalkautunut organisaation prosesseihin. Perinteiset SIEM-j\u00e4rjestelm\u00e4t eiv\u00e4t kykene valvomaan pilviresurssien kyberturvaa ja niiden skaalautuvuus on yleens\u00e4 rajoitettua ja hidasta. Monet organisaatiot k\u00e4ytt\u00e4v\u00e4t (tai tulevat k\u00e4ytt\u00e4m\u00e4\u00e4n) pilvipalveluita liiketoiminnan kannalta kriittisiin teht\u00e4viin kuten k\u00e4ytt\u00e4j\u00e4hallintaan, s\u00e4hk\u00f6postiin, tiedostojen s\u00e4ilytykseen ja sovelluksien py\u00f6ritt\u00e4miseen. T\u00e4st\u00e4 syyst\u00e4 organisaatiot ovat my\u00f6s kiinnostuneita siirtym\u00e4\u00e4n pilvipohjaiseen kyberturvavalvontaan ja j\u00e4tt\u00e4\u00e4 \u201clegacy\u201d SIEM-j\u00e4rjestelm\u00e4t (QRadar, ArcSight, LogRhythm) taaksensa.<\/p><p id=\"76ed\" class=\"pw-post-body-paragraph ma mb fq mc b md me mf mg mh mi mj mk ml mm mn mo mp mq mr ms mt mu mv mw mx fj bk\" data-selectable-paragraph=\"\">Sentinel tarjoaa 30 p\u00e4iv\u00e4n ilmaisen kokeilun, joten sen testaaminen on melko helppoa ja edullista uusille k\u00e4ytt\u00e4jille.<\/p><p id=\"0bc0\" class=\"pw-post-body-paragraph ma mb fq mc b md me mf mg mh mi mj mk ml mm mn mo mp mq mr ms mt mu mv mw mx fj bk\" data-selectable-paragraph=\"\">T\u00e4ss\u00e4 artikkelissa k\u00e4yd\u00e4\u00e4n l\u00e4pi miten migraatio Sentineliin etenee, mit\u00e4 tulee ottaa huomioon ja miten Microsoft Sentinelin ty\u00f6kalut voivat auttaa t\u00e4ss\u00e4 prosessissa.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-18c7d35 elementor-widget elementor-widget-spacer\" data-id=\"18c7d35\" data-element_type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-148ac6a elementor-widget elementor-widget-heading\" data-id=\"148ac6a\" data-element_type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Nykytilan kartoitus<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-f32dfb6 elementor-widget elementor-widget-text-editor\" data-id=\"f32dfb6\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p id=\"d6e7\" class=\"pw-post-body-paragraph ma mb fq mc b md nw mf mg mh nx mj mk ml ny mn mo mp nz mr ms mt oa mv mw mx fj bk\" data-selectable-paragraph=\"\"><b>Ensimm\u00e4isen\u00e4<\/b> tunnistetaan ja dokumentoidaan kaikki nykyisen SIEM-j\u00e4rjestelm\u00e4n ominaisuudet ja kyberturvavalvonnan prosessit, jotka halutaan siirt\u00e4\u00e4 osaksi Microsoft Sentineli\u00e4. N\u00e4ihin kuuluvat k\u00e4ytetyt teknologiat, datal\u00e4hteet, tunnistuss\u00e4\u00e4nn\u00f6t, uhkatiedon l\u00e4hteet ja valvontaprosessit eli h\u00e4lytysten tunnistaminen, tutkiminen ja ratkominen.<\/p><p id=\"5b1b\" class=\"pw-post-body-paragraph ma mb fq mc b md me mf mg mh mi mj mk ml mm mn mo mp mq mr ms mt mu mv mw mx fj bk\" data-selectable-paragraph=\"\"><b>Seuraavaksi<\/b> tunnistetaan liiketoiminnan kannalta kriittiset kohteet, joiden suojeleminen on prioriteettilistan k\u00e4rjess\u00e4. N\u00e4it\u00e4 kohteita voivat olla muun muassa tietyt k\u00e4ytt\u00e4j\u00e4t, arkaluonteiset tiedostot, virtuaalikoneet ja serverit.<\/p><p id=\"6e6e\" class=\"pw-post-body-paragraph ma mb fq mc b md me mf mg mh mi mj mk ml mm mn mo mp mq mr ms mt mu mv mw mx fj bk\" data-selectable-paragraph=\"\">Tavoitteena on luoda kattava dokumentaatio nykyisest\u00e4 valvonnan tilasta ja k\u00e4ytetyist\u00e4 prosesseista, jonka pohjalta voidaan luoda suunnitelma n\u00e4iden siirt\u00e4misest\u00e4 uuteen pilvipohjaiseen valvontaan.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-bd90d0f elementor-widget elementor-widget-spacer\" data-id=\"bd90d0f\" data-element_type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-97b5f67 elementor-widget elementor-widget-heading\" data-id=\"97b5f67\" data-element_type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Migraation suunnitteleminen<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-ca79240 elementor-widget elementor-widget-text-editor\" data-id=\"ca79240\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p id=\"a901\" class=\"pw-post-body-paragraph ma mb fq mc b md nw mf mg mh nx mj mk ml ny mn mo mp nz mr ms mt oa mv mw mx fj bk\" data-selectable-paragraph=\"\">Hyv\u00e4 suunnitelma on kaikean A ja O. Sill\u00e4 varmistetaan, ett\u00e4 projektin aikana ei tule ik\u00e4vi\u00e4 yll\u00e4tyksi\u00e4 tai tilanteita, joissa ei tiedet\u00e4 seuraavaa askelta eteenp\u00e4in. Suunnitelman tavoitteena on luoda dokumentaatio Sentinelin arkkitehtuurista, k\u00e4ytetyist\u00e4 datal\u00e4hteist\u00e4, analyysis\u00e4\u00e4nn\u00f6ist\u00e4, visualisoinneista ja prosesseista. T\u00e4m\u00e4 dokumentaatio yhdist\u00e4\u00e4 legacy SIEM:ss\u00e4 k\u00e4ytetyt ratkaisut Sentineliss\u00e4 k\u00e4ytettyihin ratkaisuihin.<\/p><p id=\"5964\" class=\"pw-post-body-paragraph ma mb fq mc b md me mf mg mh mi mj mk ml mm mn mo mp mq mr ms mt mu mv mw mx fj bk\" data-selectable-paragraph=\"\">Huomioon otettavat asiat:<\/p><ul class=\"\"><li id=\"71ab\" class=\"ma mb fq mc b md me mf mg mh mi mj mk ml mm mn mo mp mq mr ms mt mu mv mw mx ob oc od bk\" data-selectable-paragraph=\"\"><strong class=\"mc fr\">Sentinelin arkkitehtuuri<\/strong>: Onko k\u00e4yt\u00f6ss\u00e4 Log Analytics Workspacea Sentineli\u00e4 varten? Vaatiiko regulaatiot datan jakamista useisiin eri Azure alueisiin? Onko k\u00e4yt\u00f6ss\u00e4 useita Azure tenantteja?<\/li><li id=\"473d\" class=\"ma mb fq mc b md oe mf mg mh of mj mk ml og mn mo mp oh mr ms mt oi mv mw mx ob oc od bk\" data-selectable-paragraph=\"\"><strong class=\"mc fr\">Sis\u00e4\u00e4nrakennetut ratkaisut<\/strong>: Py\u00f6r\u00e4\u00e4 ei kannata keksi\u00e4 uudestaan. Sentinel sis\u00e4lt\u00e4\u00e4 useita sis\u00e4\u00e4nrakennettuja (\u201cout-of-the-box\u201d) ratkaisuja, joiden hy\u00f6dynt\u00e4minen s\u00e4\u00e4st\u00e4\u00e4 rahaa ja aikaa.<\/li><li id=\"6614\" class=\"ma mb fq mc b md oe mf mg mh of mj mk ml og mn mo mp oh mr ms mt oi mv mw mx ob oc od bk\" data-selectable-paragraph=\"\"><strong class=\"mc fr\">Kustannusten arviointi:\u00a0<\/strong>Suunnitelman yhteydess\u00e4 on j\u00e4rkev\u00e4\u00e4 luoda n\u00e4kemys siit\u00e4 kuinka paljon Sentinelin k\u00e4ytt\u00e4minen tulee maksamaan kun siihen on yhdistetty halutut datal\u00e4hteet.\u00a0<span style=\"text-decoration: underline;\"><a class=\"af oj\" href=\"https:\/\/azure.microsoft.com\/en-us\/pricing\/calculator\/\" target=\"_blank\" rel=\"noopener ugc nofollow\">Azure Pricing Calculator<\/a><\/span>\u00a0on hyv\u00e4 ty\u00f6kalu kustannusten arviointiin.\u00a0<span style=\"text-decoration: underline;\"><a class=\"af oj\" href=\"https:\/\/learn.microsoft.com\/en-us\/azure\/sentinel\/billing?tabs=simplified%2Ccommitment-tiers\" target=\"_blank\" rel=\"noopener ugc nofollow\">Lis\u00e4\u00e4 tietoa hinnoittelusta<\/a>.<\/span><\/li><li id=\"efb4\" class=\"ma mb fq mc b md oe mf mg mh of mj mk ml og mn mo mp oh mr ms mt oi mv mw mx ob oc od bk\" data-selectable-paragraph=\"\"><strong class=\"mc fr\">Datan arkaluonteisuus<\/strong>: Kaikki Sentinelin data sijaitsee Microsoftin konesaleissa, joten on tarpeen mietti\u00e4 kuinka paljon arkaluonteista dataa sinne siirret\u00e4\u00e4n ja miss\u00e4 muodossa.<\/li><\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-564a95c elementor-widget elementor-widget-spacer\" data-id=\"564a95c\" data-element_type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-b8beaef elementor-widget elementor-widget-heading\" data-id=\"b8beaef\" data-element_type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Implementaatio<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-f3deae8 elementor-widget elementor-widget-text-editor\" data-id=\"f3deae8\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p id=\"d5b7\" class=\"pw-post-body-paragraph ma mb fq mc b md nw mf mg mh nx mj mk ml ny mn mo mp nz mr ms mt oa mv mw mx fj bk\" data-selectable-paragraph=\"\">Ideaalimaailmassa implementaation suorittaminen on suunnitelman seuraamista askel kerrallaan ja riitt\u00e4v\u00e4n dokumentaation luomista (resurssien nimet jne.). Migraatio suositellaan teht\u00e4v\u00e4ksi askel kerrallaan luomalla ensin MVP (Minimum Viable Product), jonka pohjalta Sentineli\u00e4 voidaan \u201ctestata\u201d ennen kokonaista siirtymist\u00e4.<\/p><p id=\"8f2b\" class=\"pw-post-body-paragraph ma mb fq mc b md me mf mg mh mi mj mk ml mm mn mo mp mq mr ms mt mu mv mw mx fj bk\" data-selectable-paragraph=\"\">T\u00e4ss\u00e4 muutama vaihe implementaatiosta:<\/p><ul class=\"\"><li id=\"4fee\" class=\"ma mb fq mc b md me mf mg mh mi mj mk ml mm mn mo mp mq mr ms mt mu mv mw mx ob oc od bk\" data-selectable-paragraph=\"\"><strong class=\"mc fr\">Datal\u00e4hteiden yhdist\u00e4minen<\/strong><\/li><li id=\"3bed\" class=\"ma mb fq mc b md oe mf mg mh of mj mk ml og mn mo mp oh mr ms mt oi mv mw mx ob oc od bk\" data-selectable-paragraph=\"\"><strong class=\"mc fr\">Valmiiden ratkaisujen asennus\u00a0<\/strong>(Content Hub): Kartoituksessa ilmi tulleet s\u00e4\u00e4nn\u00f6t ja datal\u00e4hteet voivat l\u00f6yty\u00e4 valmiina ratkaisuina Sentinelist\u00e4, jolloin niiden kohdalla ei tarvitse luoda analyysis\u00e4\u00e4nt\u00f6j\u00e4 tyhj\u00e4st\u00e4.<\/li><li id=\"c098\" class=\"ma mb fq mc b md oe mf mg mh of mj mk ml og mn mo mp oh mr ms mt oi mv mw mx ob oc od bk\" data-selectable-paragraph=\"\"><strong class=\"mc fr\">Analyysis\u00e4\u00e4nt\u00f6jen luominen<\/strong>: Vaatii KQL:n (Kusto Query Language) osaamista. Sis\u00e4lt\u00e4\u00e4 uusien analyysis\u00e4\u00e4nt\u00f6jen luomisen datal\u00e4hteiden pohjalta sek\u00e4 olemassa olevien s\u00e4\u00e4nt\u00f6jen muuntaminen Legacy SIEM:st\u00e4 Sentineliin.<\/li><li id=\"3628\" class=\"ma mb fq mc b md oe mf mg mh of mj mk ml og mn mo mp oh mr ms mt oi mv mw mx ob oc od bk\" data-selectable-paragraph=\"\"><strong class=\"mc fr\">Automatisaatioiden luominen\u00a0<\/strong>(Azure Logic Apps): Sentinel sis\u00e4lt\u00e4\u00e4 mahdollisuuden tehokkaiden automatisaatioiden luomiseen. Tavoitteena automatisoida kartoituksessa tunnistettuja prosesseja, jotka s\u00e4\u00e4st\u00e4v\u00e4t aikaa ja rahaa. Automatisaatioita on my\u00f6s testattava ennen k\u00e4ytt\u00f6\u00f6nottoa.<\/li><li id=\"fe1f\" class=\"ma mb fq mc b md oe mf mg mh of mj mk ml og mn mo mp oh mr ms mt oi mv mw mx ob oc od bk\" data-selectable-paragraph=\"\"><strong class=\"mc fr\">Visualisointien luominen\u00a0<\/strong>(Workbooks): Useissa legacy SIEM:ss\u00e4 on n\u00e4kymi\u00e4, joista tunnistetaan ilmi\u00f6it\u00e4 ja luodaan raportteja yritysjohdolle. Sentineliss\u00e4 n\u00e4kym\u00e4t ovat \u201cWorkbook\u201d-resursseja, joista voidaan my\u00f6s luoda automatisoituja Power BI raportteja.<\/li><\/ul><p id=\"6441\" class=\"pw-post-body-paragraph ma mb fq mc b md me mf mg mh mi mj mk ml mm mn mo mp mq mr ms mt mu mv mw mx fj bk\" data-selectable-paragraph=\"\">Lopputuloksena on toimiva MVP versio Sentinelist\u00e4, jota k\u00e4ytt\u00e4m\u00e4ll\u00e4 tunnistetaan sen hy\u00f6dyt ja mahdolliset kehitt\u00e4misen kohteet. Implementaation j\u00e4lkeen alkaa valvontaprosessi, jossa hienos\u00e4\u00e4det\u00e4\u00e4n analyysis\u00e4\u00e4nt\u00f6j\u00e4 ja v\u00e4hennet\u00e4\u00e4n \u201cfalse-positive\u201d h\u00e4lytysten m\u00e4\u00e4r\u00e4\u00e4. Uusien datal\u00e4hteiden aktivoiminen kannattaa tehd\u00e4 maltilla, jotta h\u00e4lytysn\u00e4kym\u00e4\u00e4n ei synny satoja h\u00e4lytyksi\u00e4 p\u00e4iv\u00e4ss\u00e4.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-d45af41 elementor-widget elementor-widget-spacer\" data-id=\"d45af41\" data-element_type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-3e1f03d elementor-widget elementor-widget-heading\" data-id=\"3e1f03d\" data-element_type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Migraation ty\u00f6kalut<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-01bfe82 elementor-widget elementor-widget-text-editor\" data-id=\"01bfe82\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p><strong>Tunnistuss\u00e4\u00e4nt\u00f6jen muuntaminen<\/strong><\/p><p id=\"c6ad\" class=\"pw-post-body-paragraph ma mb fq mc b md nw mf mg mh nx mj mk ml ny mn mo mp nz mr ms mt oa mv mw mx fj bk\" data-selectable-paragraph=\"\">Microsoft julkaisi noin kuukausi sitten uuden\u00a0<span style=\"text-decoration: underline;\"><a class=\"af oj\" href=\"https:\/\/techcommunity.microsoft.com\/t5\/microsoft-sentinel-blog\/what-s-new-easily-migrate-to-microsoft-sentinel-with-the-new\/ba-p\/4100351\" target=\"_blank\" rel=\"noopener ugc nofollow\">migraatio ominaisuuden<\/a><\/span>\u00a0Sentineliin, jonka avulla voidaan muuntaa legacy SIEMin tunnistuss\u00e4\u00e4nt\u00f6j\u00e4 suoraan KQL-pohjaisiksi analyysis\u00e4\u00e4nn\u00f6iksi. T\u00e4m\u00e4 ominaisuus tukee t\u00e4ll\u00e4 hetkell\u00e4 vain Splunk j\u00e4rjestelm\u00e4st\u00e4 siirtymist\u00e4. Muista j\u00e4rjestelmist\u00e4 siirtyminen vaatii yh\u00e4 manuaalista s\u00e4\u00e4nt\u00f6jen muuntamista, jossa Tekven asiantuntijat mielell\u00e4\u00e4n tulevat avuksi.<\/p><p data-selectable-paragraph=\"\"><strong>Migraation seuraaminen<\/strong><\/p><p id=\"34b5\" class=\"pw-post-body-paragraph ma mb fq mc b md nw mf mg mh nx mj mk ml ny mn mo mp nz mr ms mt oa mv mw mx fj bk\" data-selectable-paragraph=\"\">Microsoft Sentineliss\u00e4 on\u00a0<span style=\"text-decoration: underline;\"><a class=\"af oj\" href=\"https:\/\/learn.microsoft.com\/en-gb\/azure\/sentinel\/migration-track\" target=\"_blank\" rel=\"noopener ugc nofollow\">visualisointi<\/a><\/span> (workbook), jonka avulla migraatiota voidaan seurata. Visualisoinnissa voi seurata migraation tilaa, suoritettavia teht\u00e4v\u00e4t ja jopa luoda suunnitelma migraatiolle.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-78ee4f7 elementor-widget elementor-widget-image\" data-id=\"78ee4f7\" data-element_type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<img fetchpriority=\"high\" decoding=\"async\" width=\"1024\" height=\"447\" src=\"https:\/\/www.tekve.fi\/wp-content\/uploads\/2024\/12\/0_w3MOl63djJ9PTVX--1024x447.webp\" class=\"attachment-large size-large wp-image-990063\" alt=\"\" srcset=\"https:\/\/www.tekve.fi\/wp-content\/uploads\/2024\/12\/0_w3MOl63djJ9PTVX--1024x447.webp 1024w, https:\/\/www.tekve.fi\/wp-content\/uploads\/2024\/12\/0_w3MOl63djJ9PTVX--300x131.webp 300w, https:\/\/www.tekve.fi\/wp-content\/uploads\/2024\/12\/0_w3MOl63djJ9PTVX--768x335.webp 768w, https:\/\/www.tekve.fi\/wp-content\/uploads\/2024\/12\/0_w3MOl63djJ9PTVX--18x8.webp 18w, https:\/\/www.tekve.fi\/wp-content\/uploads\/2024\/12\/0_w3MOl63djJ9PTVX-.webp 1275w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/>\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-d212a0b elementor-widget elementor-widget-spacer\" data-id=\"d212a0b\" data-element_type=\"widget\" data-widget_type=\"spacer.default\">\n\t\t\t\t\t\t\t<div class=\"elementor-spacer\">\n\t\t\t<div class=\"elementor-spacer-inner\"><\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-6ff91ae elementor-widget elementor-widget-heading\" data-id=\"6ff91ae\" data-element_type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t\t<h3 class=\"elementor-heading-title elementor-size-default\">Lopuksi<\/h3>\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-2420aba elementor-widget elementor-widget-text-editor\" data-id=\"2420aba\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t\t\t\t\t\t<p id=\"3681\" class=\"pw-post-body-paragraph ma mb fq mc b md nw mf mg mh nx mj mk ml ny mn mo mp nz mr ms mt oa mv mw mx fj bk\" data-selectable-paragraph=\"\">Migraation suorittaminen on projekti, jonka suunnitteluun ja suorittamiseen kannattaa k\u00e4ytt\u00e4\u00e4 aikaa ja k\u00e4rsiv\u00e4llisyytt\u00e4. Olemassa olevan valvontaj\u00e4rjestelm\u00e4n lakkauttaminen tehd\u00e4\u00e4n vasta kun Microsoft Sentinel on t\u00e4ydess\u00e4 vauhdissa. Migraation j\u00e4lkeen varsinainen kyberturvavalvonta alkaa ja prosessien hienos\u00e4\u00e4t\u00f6 jatkuu.<\/p><p class=\"pw-post-body-paragraph ma mb fq mc b md nw mf mg mh nx mj mk ml ny mn mo mp nz mr ms mt oa mv mw mx fj bk\" data-selectable-paragraph=\"\">Tekven asiantuntijat auttavat mielell\u00e4\u00e4n migraation kaikissa vaiheissa sek\u00e4 jatkuvassa kyberturvavalvonnassa, joten ottakaa rohkeasti yhteytt\u00e4!<\/p><div class=\"eq er es et eu l\"><article><div class=\"l\"><div class=\"l\"><section><div><div class=\"fj fk fl fm fn\"><div class=\"ab cb\"><div class=\"ci bh ev ew ex ey\"><p data-selectable-paragraph=\"\">\u00a0<\/p><p id=\"ff77\" class=\"pw-post-body-paragraph ma mb fq mc b md me mf mg mh mi mj mk ml mm mn mo mp mq mr ms mt mu mv mw mx fj bk\" data-selectable-paragraph=\"\"><strong class=\"mc fr\">Kirjoittaja<\/strong>: Petter Kauppi (petter@tekve.fi)<\/p><p id=\"1d81\" class=\"pw-post-body-paragraph ma mb fq mc b md me mf mg mh mi mj mk ml mm mn mo mp mq mr ms mt mu mv mw mx fj bk\" data-selectable-paragraph=\"\"><strong class=\"mc fr\">Contact<\/strong>:\u00a0<a class=\"af oe\" href=\"mailto:toimisto@tekve.fi\" target=\"_blank\" rel=\"noopener ugc nofollow\">toimisto@tekve.fi,<\/a>\u00a0+358 41 311 9277<\/p><\/div><\/div><\/div><\/div><\/section><\/div><\/div><\/article><\/div><div class=\"ab cb\"><div class=\"ci bh ev ew ex ey\"><div class=\"or os ab hq\"><div class=\"ot ab\">\u00a0<\/div><\/div><\/div><\/div>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<div class=\"vamtam-has-theme-widget-styles elementor-element elementor-element-1661b45 elementor-widget__width-inherit elementor-widget-mobile__width-inherit elementor-widget-tablet__width-auto elementor-widget elementor-widget-button\" data-id=\"1661b45\" data-element_type=\"widget\" data-widget_type=\"button.default\">\n\t\t\t\t\t\t\t\t\t\t<a class=\"elementor-button elementor-button-link elementor-size-sm\" href=\"#form\">\n\t\t\t\t\t\t<span class=\"elementor-button-content-wrapper\">\n\t\t\t\t\t\t\t\t\t<span class=\"elementor-button-text\">Contact us<\/span>\n\t\t\t\t\t<\/span>\n\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>","protected":false},"excerpt":{"rendered":"<p>Microsoft Sentinel on kustannustehokas ja nopeasti skaalautuva SIEM\/SOAR j\u00e4rjestelm\u00e4, jonka avulla organisaatio voi turvata on-premises j\u00e4rjestelm\u00e4t\u00a0ja\u00a0pilvess\u00e4 sijaitsevat resurssit. Kun lokidataa syntyy lis\u00e4\u00e4, niin tilaa voidaan ostaa maksukorttia heiluttamalla eik\u00e4 tarvitse odottaa uuden tallennustilan saapumista omaan on-premises yksikk\u00f6\u00f6n. Organisaatioilla voi olla k\u00e4yt\u00f6ss\u00e4 perinteinen on-premises valvontaj\u00e4rjestelm\u00e4 (SIEM), jonka k\u00e4ytt\u00e4minen on jalkautunut organisaation prosesseihin. Perinteiset SIEM-j\u00e4rjestelm\u00e4t eiv\u00e4t kykene&#8230;<\/p>","protected":false},"author":2,"featured_media":990064,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[16,14],"tags":[],"class_list":["post-990061","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-pilvitietoturva","category-tietoturvavalvonta"],"aioseo_notices":[],"jetpack_featured_media_url":"https:\/\/www.tekve.fi\/wp-content\/uploads\/2024\/12\/1_4DBQ-Se2rYetfGvANoBOdA.webp","_links":{"self":[{"href":"https:\/\/www.tekve.fi\/en\/wp-json\/wp\/v2\/posts\/990061","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.tekve.fi\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.tekve.fi\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.tekve.fi\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.tekve.fi\/en\/wp-json\/wp\/v2\/comments?post=990061"}],"version-history":[{"count":12,"href":"https:\/\/www.tekve.fi\/en\/wp-json\/wp\/v2\/posts\/990061\/revisions"}],"predecessor-version":[{"id":991531,"href":"https:\/\/www.tekve.fi\/en\/wp-json\/wp\/v2\/posts\/990061\/revisions\/991531"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.tekve.fi\/en\/wp-json\/wp\/v2\/media\/990064"}],"wp:attachment":[{"href":"https:\/\/www.tekve.fi\/en\/wp-json\/wp\/v2\/media?parent=990061"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.tekve.fi\/en\/wp-json\/wp\/v2\/categories?post=990061"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.tekve.fi\/en\/wp-json\/wp\/v2\/tags?post=990061"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}