Enterprise Security Command
Security Center
Monitor identity, MFA, policy, and governance security events across the tenant. High-severity actions are normalized for audit, notification, and future SIEM delivery.
Total Events
0
Critical
0
High
0
Medium
0
SIEM Delivery Fabric
Webhook Destinations
Forward signed security events to Splunk, Sentinel, Datadog, Slack, Teams, or a generic HTTPS collector.
0 active
No SIEM/webhook destinations configured yet.
Add Destination
Connect SIEM/Webhook
URLs and signing secrets are encrypted at rest. Payloads are signed with HMAC-SHA256.
Security Event Timeline
MFA, policy, and privileged-access events requiring admin attention.
Loading security events...