In this personal project, I configured Microsoft Azure Sentinel to collect and analyze security events from a Linux virtual machine via syslog. I investigated and triaged brute-force login attempts as well as tuned detection rules to improve accuracy, and incident investigation. This hands-on work strengthened my skills in SIEM configuration, log analysis, and proactive threat detection.