Azure Security Center—Advanced integrations with export of recommendations and alerts
Published date: 04 November, 2019
In order to enable enterprise level scenarios on top of Security Center, it is now possible to consume Security Center alerts and recommendations in additional places except the Azure portal or API. These can be directly exported to an Event Hub and to Log Analytics workspaces. Here are a few workflows you can create around these new capabilities:
- With export to Log Analytics workspace, you can create custom dashboards with PowerBI.
- With export to Event Hub, you will be able to export Security Center alerts and recommendations to your third party SIEMs, to a third party solution in real time or Azure Data Explorer.