Search for Microsoft security blog posts written and shared by the community. Discover insights on Azure, Defender, Entra, Intune, Sentinel, and more.

Building a practical log baseline

April 06, 2026 by Truls Dahlsveen

microsoft-sentinel data-and-logging detection-engineering cost-optimization

How to classify security logs into primary and secondary data, use Sentinel tiers pragmatically, and keep cost aligned with detection value.

Read full article →