🔥 3-day streak
Microsoft Security Operations Analyst158 / 190
Question 158 of 190

Your SOC uses Microsoft Sentinel with the Fusion advanced multistage attack detection engine enabled. The threat hunting team has authored a high-fidelity scheduled analytics rule that detects a specific credential-dumping technique. They want Fusion to be able to combine alerts generated by this custom scheduled rule with anomalies and other signals to create higher-confidence multistage incidents. What must you do so Fusion can incorporate alerts from this custom scheduled rule?

Reviewed for accuracy · Report an issueNext question