Use Search jobs in Microsoft Sentinel
In Microsoft Sentinel, you can search across long time periods in large datasets by using a search job.
Security Operations Analyst
Azure
Microsoft Sentinel
Module Objectives
After completing this module, you'll be able to:
- Use Search Jobs in Microsoft Sentinel
- Restore archive logs in Microsoft Sentinel
Units
Prerequisites
Basic knowledge of operational concepts such as KQL, logging, and archiving