🔥 3-day streak
Microsoft Security Operations Analyst136 / 190
Question 136 of 190
Your SOC lead wants to understand which MITRE ATT&CK tactics and techniques are actively covered by your Microsoft Sentinel detections, and to identify gaps where no analytics rules exist. She asks you to produce this visibility using built-in Sentinel capabilities without exporting data to an external tool. Which approach should you use?
Reviewed for accuracy · Report an issueNext question