Organizations are increasingly adopting cloud-based Security Information and Event Management (SIEM) solutions like Azure Sentinel due to advantages such as affordable cloud storage and abstracted compute resources. Azure Sentinel, introduced by Microsoft in 2019, has become a powerful tool for both small businesses and large organizations by integrating valuable data, such as Microsoft 365. Tines, a no-code automation platform, enhances the capabilities of Azure Sentinel by automating interactions with alerts, querying data via the Log Analytics backend, and leveraging threat intelligence indicators. The use of Microsoft Graph API and Azure Log Analytics allows for efficient management and analysis of security data, enabling agile responses to potential threats. By utilizing Tines, security teams can create workflows that integrate with various tools, such as ticketing systems and threat intelligence platforms.