Export Microsoft Defender event data to a log analytics workspace

In the Defender ATP portal (securitycenter.windows.com) it is possible to create custom detections, but the smallest time frame is 1 hour.

Even though 1 hour is better than the mean time to detection of a breach reported via Ponemon, Verizon, etc. I'm trying to cut that down even further by piecing together different Azure cloud services i.e. Event Hubs, Blob Storage, Search Services, Log Analytics, etc.

Is there a way to leverage the raw streaming API and perform searching with a log analytics workspace?

This would speed up detection to within 5 minutes of an event occurring rather than 1 hour