Operations Management Suite (OMS)

Microsoft OMS, also known as Log Analytics, is a new platform for managing cloud deployments, on-premise data centers, and hybrid solutions.

OMS provides multiple modular solutions—a specific functionality that helps to implement a feature. For example, security and audit solutions help to ascertain a complete view of security for an organization's deployment. Similarly, there are many more solutions, such as automation and change tracking, that should be implemented from a security perspective.

The OMS security and audit provides information in the following five categories:

• Security domains: These provide the ability to view security records, malware assessments, update assessments, network security, identity and access information, and computers with security events. Access is also provided to the Azure Security Center dashboard.
• Antimalware assessment: This helps identify servers that are not protected against malware and have security issues. It provides an overall exposure to potential security problems and assesses their criticality. Users can take proactive actions based on these recommendations. Azure Security Center sub-categories provide information collected by Azure Security Center.
• Notable issues: This quickly identifies active issues and grades their severity.
• Detections: This category is in preview mode. It enables the identification of attack patterns by visualizing security alerts.
• Threat intelligence: This helps identify attack patterns by visualizing the total number of servers with outbound malicious IP traffic, the malicious threat type, and a map that shows where these IPs are coming from.

The preceding details, when viewed from the portal, are shown in the following screenshot: