Leveraging Defender XDR & Sentinel Automations

Written By Nicolas Long

May 5, 2026, at 1:00 PM ET | Sponsored by Microsoft

Register

As threats increasingly target identities, speed and consistency of response are critical. In this session, we’ll explore how Microsoft Defender XDR and Microsoft Sentinel can work together to automate high‑impact security actions—specifically disabling compromised user accounts and revoking active user sessions in near real time.

Attendees will learn how to leverage detection signals from Defender XDR and orchestrate automated response workflows in Sentinel to contain identity‑based attacks such as phishing, token theft, and account takeover. We’ll walk through practical automation patterns that reduce manual effort, shorten attacker dwell time, and enforce consistent response across the environment.

Key takeaways:

  • Learn how to use Defender XDR signals to detect identity attacks

  • See how Sentinel automates responses to phishing and account takeovers

  • Apply automation patterns that save time and stop attackers faster

Whether you’re looking to mature your SOAR strategy or operationalize Zero Trust principles, this webinar will demonstrate how automation can transform identity protection from reactive to proactive.

Featured Speaker:

  • Micah Linehan, Sr. Security Solutions Engineer

Nicolas Long
Previous

Beyond the Breach: Setting a New Security Standard for Vendor Partnerships
Next

Archived: Scaling Cyber Defense in K–12: Lessons from Knox County Schools