title
Please take a moment to fill out this form. We will get back to you as soon as possible.
All fields marked with an asterisk (*) are mandatory.
Microsoft Azure Security Technologies
Course Description
Overview
This course provides IT Security Professionals with the knowledge and skills needed to implement security controls, maintain an organization’s security posture, and identify and remediate security vulnerabilities. This course includes security for identity and access, platform protection, data and applications, and security operations.Objectives
Audience
Prerequisites
-
Successful learners will have prior knowledge and understanding of:
- Security best practices and industry security requirements such as defense in depth, least privileged access, role-based access control, multi-factor authentication, shared responsibility, and zero trust model.
- Be familiar with security protocols such as Virtual Private Networks (VPN), Internet Security Protocol (IPSec), Secure Socket Layer (SSL), disk and data encryption methods.
- Have some experience deploying Azure workloads. This course does not cover the basics of Azure administration, instead the course content builds on that knowledge by adding security specific information.
- Have experience with Windows and Linux operating systems and scripting languages.
- AZ-104: Manage identities and governance in Azure - Learn | Microsoft Docs
- AZ-104: Implement and manage storage in Azure - Learn | Microsoft Docs
- AZ-104: Configure and manage virtual networks for Azure administrators - Learn | Microsoft Docs
- AZ-104: Monitor and back up Azure resources - Learn | Microsoft Docs
- AZ-104: Deploy and manage Azure compute resources - Learn | Microsoft Docs
Topics
- Introduction
- Explore Microsoft Entra features
- Self-managed Active Directory Domain Services, Microsoft Entra ID, and managed Microsoft Entra Domain Services
- Microsoft Entra Domain Services and self-managed AD DS
- Microsoft Entra Domain Services and Microsoft Entra ID
- Investigate roles in Microsoft Entra ID
- Microsoft Entra built-in roles
- Deploy Microsoft Entra Domain Services
- Create and manage Microsoft Entra users
- Manage users with Microsoft Entra groups
- Configure Microsoft Entra administrative units
- Implement passwordless authentication
- Explore Try-This exercises
- Knowledge check
- Introduction
- Deploy Microsoft Entra Connect
- Explore authentication options
- Configure Password Hash Synchronization (PHS)
- Implement Pass-through Authentication (PTA)
- Deploy Federation with Microsoft Entra ID
- Explore the authentication decision tree
- Configure password writeback
- Knowledge check
- Introduction
- Explore Microsoft Entra ID Protection
- Configure risk event detections
- Implement user risk policy
- Implement sign-in risk policy
- Deploy multifactor authentication in Azure
- Explore multifactor authentication settings
- Enable multifactor authentication
- Implement Microsoft Entra Conditional Access
- Configure conditional access conditions
- Implement access reviews
- Explore try-this exercises
- Knowledge check
- Introduction
- Explore the zero trust model
- Review the evolution of identity management
- Deploy Microsoft Entra Privileged Identity Management
- Configure privileged identity management scope
- Implement privileged identity management onboarding
- Explore privileged identity management configuration settings
- Implement a privileged identity management workflow
- Explore Try-This exercises
- Knowledge check
- Introduction
- Review the shared responsibility model
- Explore the Azure cloud security advantages
- Review Azure hierarchy of systems
- Configure Azure policies
- Enable Azure role-based access control (RBAC)
- Compare and contrast Azure RBAC vs Azure policies
- Configure built-in roles
- Enable resource locks
- Deploy Azure blueprints
- Design an Azure subscription management plan
- Explore Try-This exercises
- Knowledge check
- Introduction
- Define defense in depth
- Explore virtual network security
- Enable Distributed Denial of Service (DDoS) Protection
- Configure a distributed denial of service protection implementation
- Explore Azure Firewall features
- Deploy an Azure Firewall implementation
- Configure VPN forced tunneling
- Create User Defined Routes and Network Virtual Appliances
- Explore hub and spoke topology
- Perform try-this exercises
- Knowledge check
- Introduction
- Explore Network Security Groups (NSG)
- Deploy a Network Security Groups implementation
- Create Application Security Groups
- Enable service endpoints
- Configure service endpoint services
- Deploy private links
- Implement an Azure application gateway
- Deploy a web application firewall
- Configure and manage Azure front door
- Review ExpressRoute
- Perform try-this exercises
- Knowledge check
- Introduction
- Enable endpoint protection
- Define a privileged access device strategy
- Deploy privileged access workstations
- Create virtual machine templates
- Enable and secure remote access management
- Configure update management
- Deploy disk encryption
- Managed disk encryption options
- Deploy and configure Windows Defender
- Microsoft cloud security benchmark in Defender for Cloud
- Explore Microsoft Defender for Cloud recommendations
- Perform Try-This exercises
- Knowledge check
- Introduction
- Explore containers
- Configure Azure Container Instances security
- Manage security for Azure Container Instances (ACI)
- Explore the Azure Container Registry (ACR)
- Enable Azure Container Registry authentication
- Review Azure Kubernetes Service (AKS)
- Implement an Azure Kubernetes Service architecture
- Configure Azure Kubernetes Service networking
- Deploy Azure Kubernetes Service storage
- Secure authentication to Azure Kubernetes Service with Active Directory
- Manage access to Azure Kubernetes Service using Azure role-based access controls
- Knowledge check
- Introduction
- Explore Azure Key Vault
- Configure Key Vault access
- Review a secure Key Vault example
- Deploy and manage Key Vault certificates
- Create Key Vault keys
- Manage customer managed keys
- Enable Key Vault secrets
- Configure key rotation
- Manage Key Vault safety and recovery features
- Perform Try-This exercises
- Explore the Azure Hardware Security Module
- Knowledge check
- Introduction
- Review the Microsoft identity platform
- Explore the Application model
- Register an application with App Registration
- Configure Microsoft Graph permissions
- Enable managed identities
- Azure App Services
- App Service Environment
- Azure App Service plan
- App Service Environment networking
- Availability Zone Support for App Service Environments
- App Service Environment Certificates
- Perform Try-This exercises
- Knowledge check
- Introduction
- Define data sovereignty
- Configure Azure storage access
- Deploy shared access signatures
- Manage Microsoft Entra storage authentication
- Implement storage service encryption
- Configure blob data retention policies
- Configure Azure files authentication
- Enable the secure transfer required property
- Perform Try-This exercises
- Knowledge check
- Introduction
- Enable SQL database authentication
- Configure SQL database firewalls
- Enable and monitor database auditing
- Implement data discovery and classification
- Microsoft Defender for SQL
- Vulnerability assessment for SQL Server
- SQL Advanced Threat Protection
- Explore detection of a suspicious event
- SQL vulnerability assessment express and classic configurations
- Configure dynamic data masking
- Implement transparent data encryption
- Deploy always encrypted features
- Deploy an always encrypted implementation
- Perform Try-This exercises
- Knowledge check
- Introduction
- Explore Azure Monitor
- Configure and monitor metrics and logs
- Enable Log Analytics
- Manage connected sources for log analytics
- Enable Azure monitor Alerts
- Configure properties for diagnostic logging
- Perform try-this exercises
- Knowledge check
- Introduction
- MITRE Attack matrix
- Implement Microsoft Defender for Cloud
- Security posture
- Workload protections
- Deploy Microsoft Defender for Cloud
- Azure Arc
- Azure Arc capabilities
- Microsoft cloud security benchmark
- Configure Microsoft Defender for Cloud security policies
- View and edit security policies
- Manage and implement Microsoft Defender for Cloud recommendations
- Explore secure score
- Define brute force attacks
- Understand just-in-time VM access
- Implement just-in-time VM access
- Perform try-this exercises
- Knowledge check
- Introduction
- Enable Microsoft Sentinel
- Configure data connections to Sentinel
- Create workbooks to monitor Sentinel data
- Enable rules to create incidents
- Configure playbooks
- Hunt and investigate potential breaches
- Knowledge check
Related Courses
-
Microsoft Azure Fundamentals (1 Day)
MOC-AZ-900T00- Duration: 1 Day
- Delivery Format: Classroom Training, Online Training
- Price: 595.00 USD
-
Designing and Implementing a Data Science Solution on Azure
MOC-DP-100T01- Duration: 3 Days
- Delivery Format: Classroom Training, Online Training
- Price: 1,785.00 USD
Self-Paced Training Info
Learn at your own pace with anytime, anywhere training
- Same in-demand topics as instructor-led public and private classes.
- Standalone learning or supplemental reinforcement.
- e-Learning content varies by course and technology.
- View the Self-Paced version of this outline and what is included in the SPVC course.
- Learn more about e-Learning
Course Added To Shopping Cart
bla
bla
bla
bla
bla
bla
Self-Paced Training Terms & Conditions
Exam Terms & Conditions
Please refer to the full terms and conditions here.
Sorry, there are no classes that meet your criteria.
Please contact us to schedule a class.
STOP! Before You Leave
Save 0% on this course!
Take advantage of our online-only offer & save 0% on any course !
Promo Code skip0 will be applied to your registration
Purchase Information
title
Please take a moment to fill out this form. We will get back to you as soon as possible.
All fields marked with an asterisk (*) are mandatory.