Jira integration for investigations
SOC teams need to have a good ticketing system to keep evidence (Screenshots, query results, IOCs, etc.) of each and every investigation they do. We use Jira, and we've had to do webhooks to do integration - but it is not smooth (the alert info submitted is poor). Better integration for automatic ticket creation, as well as the ability to aggregate various alerts into one ticket would be great.
Ofer Shezaf commented
To integrate Azure Sentinel with a ticketing system, use a playbook, either automatically from an alert rule, or manually from an alert page. Logic Apps, which Sentinel uses for playbooks, already has an automation connector for Jira: https://docs.microsoft.com/en-us/connectors/jira/