 So what is SOAR or security, orchestration, automation and response? Well, we often use tools like a scene such as Azure Sentinel to hunt for our data, identify anomalies and alerts from our data. What SOAR is about is actually having an automated response to alerts that happen within those environments. For example, with Azure Sentinel, you can leverage Azure Logic Apps, a completely no-code workflow system to orchestrate some automated response based on incidents that happen within your environment. Let me give you an example. Say that you had somebody trying to brute force into a user's account and you identified that as an alert within Azure Sentinel, you could have a Logic App trigger that uses the Microsoft Graph API, finds out who that user's manager is, sends them an approval email to say, there's been some brute force activity here, do you want to approve or decline the blocking of this user's account and then have the workflow finish based on the response from the manager and either block the account or do nothing. And we can automate that response, reducing the need for people in these kind of scenarios where ultimately we can orchestrate and automate those. So that's what SOAR is, or security, orchestration, automation and response.