Microsoft Defender for Identity in Depth
An exhaustive guide to ITDR, breach prevention, and cyberattack response
Published on 5. March 2025
380 pages
978-1-83588-449-2 (ISBN)
Description
Become an MDI expert and transform your IT security with advanced identity protection strategies to safeguard against evolving cyber threats
Key Features
Optimize configurations for peak security performance by tailoring detection thresholds
Leverage real-world insights and case studies to improve threat detection and response strategies
Establish a strong ITDR defense with Microsoft Defender for Identity
Purchase of the print or Kindle book includes a free PDF eBook
Book DescriptionWritten by a recognized cybersecurity expert, Microsoft Defender for Identity in Depth not only lays the groundwork for deploying and managing MDI, but also takes your knowledge to expert levels, enabling you to strengthen your organization against the most advanced cyber threats. You'll familiarize yourself with the essentials of MDI, from seamless setup to leveraging PowerShell for automation, setting the stage for exploring advanced integrations and capabilities. Through practical, real-world examples, you'll learn how to extend MDI's reach by using APIs and conducting proactive threat hunting with KQL to turn insights into actions. The book gradually shifts focus to operational excellence, helping you develop expertise in investigating alerts, optimizing action accounts, and troubleshooting, which will empower you to master the building and maintenance of a robust ITDR framework and strengthen your security posture. By the end of this book, you'll be able to harness the full potential of MDI's functionalities, positioning you as a key player in your organization's cybersecurity defenses.What you will learn
Ensure a secure and efficient MDI setup for peak defense capabilities
Unlock automation with PowerShell scripting magic
Seamlessly blend MDI with AD CS, AD FS, and Entra Connect
Expand MDI's reach and impact through APIs
Pioneer advanced threat hunting with KQL expertise in Defender XDR
Craft expert, strategic responses to security alerts
Optimize action accounts for maximum agility
Establish a robust and rigid ITDR framework
Who this book is forIf you're an IT or security professional looking to enhance your cybersecurity skills, especially in identity protection and threat management with Microsoft Defender for Identity (MDI), then this book is for you. It's perfect for system administrators, cybersecurity analysts, and cloud engineers who want to strengthen their expertise in MDI. A basic understanding of cybersecurity principles, as well as familiarity with Microsoft environments and Active Directory are recommended prerequisites for maximizing your learning experience.
Key Features
Optimize configurations for peak security performance by tailoring detection thresholds
Leverage real-world insights and case studies to improve threat detection and response strategies
Establish a strong ITDR defense with Microsoft Defender for Identity
Purchase of the print or Kindle book includes a free PDF eBook
Book DescriptionWritten by a recognized cybersecurity expert, Microsoft Defender for Identity in Depth not only lays the groundwork for deploying and managing MDI, but also takes your knowledge to expert levels, enabling you to strengthen your organization against the most advanced cyber threats. You'll familiarize yourself with the essentials of MDI, from seamless setup to leveraging PowerShell for automation, setting the stage for exploring advanced integrations and capabilities. Through practical, real-world examples, you'll learn how to extend MDI's reach by using APIs and conducting proactive threat hunting with KQL to turn insights into actions. The book gradually shifts focus to operational excellence, helping you develop expertise in investigating alerts, optimizing action accounts, and troubleshooting, which will empower you to master the building and maintenance of a robust ITDR framework and strengthen your security posture. By the end of this book, you'll be able to harness the full potential of MDI's functionalities, positioning you as a key player in your organization's cybersecurity defenses.What you will learn
Ensure a secure and efficient MDI setup for peak defense capabilities
Unlock automation with PowerShell scripting magic
Seamlessly blend MDI with AD CS, AD FS, and Entra Connect
Expand MDI's reach and impact through APIs
Pioneer advanced threat hunting with KQL expertise in Defender XDR
Craft expert, strategic responses to security alerts
Optimize action accounts for maximum agility
Establish a robust and rigid ITDR framework
Who this book is forIf you're an IT or security professional looking to enhance your cybersecurity skills, especially in identity protection and threat management with Microsoft Defender for Identity (MDI), then this book is for you. It's perfect for system administrators, cybersecurity analysts, and cloud engineers who want to strengthen their expertise in MDI. A basic understanding of cybersecurity principles, as well as familiarity with Microsoft environments and Active Directory are recommended prerequisites for maximizing your learning experience.
All prices
More details
Edition
Digital original
Language
English
Place of publication
Birmingham
United Kingdom
Target group
Professional and scholarly
College/higher education
Edition type
Digital original
Product notice
Reflowable
File size
12,36 MB
ISBN-13
978-1-83588-449-2 (9781835884492)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Classification
Other editions
Additional editions
Pierre Thoor
Microsoft Defender for Identity in Depth
An exhaustive guide to ITDR, breach prevention, and cyberattack response
Book
12/2024
Packt Publishing
€52.60
Shipment within 3-4 weeks
Persons
Thoor Pierre :
Pierre Thoor is a Microsoft MVP in security and a dedicated cybersecurity expert with a focus on identity protection and threat detection. As a first-time author, he shares his extensive knowledge in this book. Pierre hosts the Security Dojo Podcast and blogs at thoor.tech, where he explores Microsoft security topics. As an international speaker, he makes complex security subjects accessible to audiences worldwide. At Onevinn, Pierre delivers advanced security solutions that strengthen organizations' defenses against cyber threats. He specializes in Microsoft Sentinel and Microsoft Defender XDR. Pierre is also an expert in Azure Governance, including the Cloud Adoption Framework and enterprise-scale landing zones, ensuring that security is integrated into every aspect of cloud adoption. With skills in DevOps practices, Kusto Query Language (KQL), and developing solutions with Bicep and PowerShell, he implements automation and infrastructure as code to enhance security operations. Pierre assists organizations in navigating the complexities of modern cybersecurity challenges.
Pierre Thoor is a Microsoft MVP in security and a dedicated cybersecurity expert with a focus on identity protection and threat detection. As a first-time author, he shares his extensive knowledge in this book. Pierre hosts the Security Dojo Podcast and blogs at thoor.tech, where he explores Microsoft security topics. As an international speaker, he makes complex security subjects accessible to audiences worldwide. At Onevinn, Pierre delivers advanced security solutions that strengthen organizations' defenses against cyber threats. He specializes in Microsoft Sentinel and Microsoft Defender XDR. Pierre is also an expert in Azure Governance, including the Cloud Adoption Framework and enterprise-scale landing zones, ensuring that security is integrated into every aspect of cloud adoption. With skills in DevOps practices, Kusto Query Language (KQL), and developing solutions with Bicep and PowerShell, he implements automation and infrastructure as code to enhance security operations. Pierre assists organizations in navigating the complexities of modern cybersecurity challenges.
Content
Table of Contents
Introduction to Microsoft Defender for Identity
Setting up Microsoft Defender for Identity
Leveraging MDI PowerShell for Automation and Management
Integrating MDI with AD FS, AD CS, and Entra Connect
Extending MDI Capabilities Through APIs
Mastering KQL for Advanced Threat Detection in MDI
Investigating and Responding to Security Alerts
Utilizing MDI Action Accounts Effectively
Building a Resilient Identity Threat Detection and Response Framework
Navigating Challenges: MDI Troubleshooting and Optimization
Introduction to Microsoft Defender for Identity
Setting up Microsoft Defender for Identity
Leveraging MDI PowerShell for Automation and Management
Integrating MDI with AD FS, AD CS, and Entra Connect
Extending MDI Capabilities Through APIs
Mastering KQL for Advanced Threat Detection in MDI
Investigating and Responding to Security Alerts
Utilizing MDI Action Accounts Effectively
Building a Resilient Identity Threat Detection and Response Framework
Navigating Challenges: MDI Troubleshooting and Optimization
