Microsoft Security, Compliance, and Identity Fundamentals

 

The audience for this course is looking to familiarize themselves with the fundamentals of security, compliance, and identity (SCI) across cloud-based and related Microsoft services. The content for this course aligns to the SC-900 exam objective domain. Candidates should be familiar with Microsoft Azure and Microsoft 365 and understand how Microsoft security, compliance, and identity solutions can span across these solution areas to provide a holistic and end-to-end solution.
 

Before attending this course, students must have:
• General understanding of networking and cloud computing concepts.
• General IT knowledge or any general experience working in an IT environment.
• General understanding of Microsoft Azure and Microsoft 365.

Describe security and compliance concepts

• Introduction
• Describe the shared responsibility model
• Describe defense in depth
• Describe the Zero Trust model
• Describe encryption and hashing
• Describe governance, risk, and compliance (GRC) concepts
• Knowledge check

Describe identity concepts

• Introduction
• Define authentication and authorization
• Define identity as the primary security perimeter
• Describe the role of the identity provider
• Describe the concept of directory services and Active Directory
• Describe the concept of federation
• Knowledge check

Describe the function and identity types of Microsoft Entra ID

• Introduction
• Describe Microsoft Entra ID
• Describe types of identities
• Describe hybrid identity
• Describe external identities
• Knowledge check

Describe the authentication capabilities of Microsoft Entra ID

• Introduction
• Describe authentication methods
• Describe multifactor authentication
• Describe self-service password reset
• Describe password protection and management capabilities
• Knowledge check

Describe access management capabilities of Microsoft Entra ID

• Introduction
• Describe Conditional Access
• Describe Microsoft Entra roles and role-based access control (RBAC)
• Knowledge check

Describe the identity protection and governance capabilities of Microsoft Entra

• Introduction
• Describe Microsoft Entra ID Governance
• Describe access reviews
• Describe entitlement management
• Describe the capabilities of Privileged identity Management
• Describe Microsoft Entra ID Protection
• Describe Microsoft Entra Permissions Management
• Describe Microsoft Entra Verified ID
• Knowledge check

Describe core infrastructure security services in Azure

• Introduction
• Describe Azure DDoS protection
• Describe Azure Firewall
• Describe Web Application Firewall
• Describe network segmentation in Azure
• Describe Azure Network Security Groups
• Describe Azure Bastion
• Describe Azure Key Vault
• Knowledge check

Describe the security management capabilities in Azure

• Introduction
• Describe Microsoft Defender for Cloud
• Describe how security policies and initiatives improve cloud security posture
• Describe Cloud security posture management
• Describe the enhanced security of Microsoft Defender for Cloud
• Describe DevOps security management
• Knowledge check

Describe the capabilities in Microsoft Sentinel

• Introduction
• Define the concepts of SIEM and SOAR
• Describe threat detection and mitigation capabilities in Microsoft Sentinel
• Describe Microsoft Security Copilot
• Knowledge check

Describe threat protection with Microsoft 365 Defender

• Introduction
• Describe Microsoft 365 Defender services
• Describe Microsoft Defender for Office 365
• Describe Microsoft Defender for Endpoint
• Describe Microsoft Defender for Cloud Apps
• Describe Microsoft Defender for Identity
• Describe Microsoft Defender Vulnerability Management
• Describe Microsoft Defender Threat Intelligence
• Describe the Microsoft 365 Defender portal
• Knowledge check

Describe Microsoft’s Service Trust portal and privacy capabilities

• Introduction
• Describe the offerings of the Service Trust portal
• Describe Microsoft's privacy principles
• Describe Microsoft Priva
• Knowledge check

Describe the compliance management capabilities in Microsoft Purview

• Introduction
• Describe the Microsoft Purview compliance portal
• Describe Compliance Manager
• Describe use and benefits of compliance score
• Knowledge check

Describe the information protection and data lifecycle management in Microsoft Purview

• Introduction
• Know your data, protect your data, and govern your data
• Describe the data classification capabilities of the compliance portal
• Describe sensitivity labels and policies
• Describe data loss prevention
• Describe retention policies and retention labels
• Describe records management
• Describe the Microsoft Purview unified data governance solution
• Knowledge check

Describe the insider risk capabilities in Microsoft Purview

• Introduction
• Describe insider risk management
• Describe communication compliance
• Knowledge check

Describe the eDiscovery and Audit capabilities in Microsoft Purview

• Introduction
• Describe the eDiscovery solutions in Microsoft Purview
• Describe the audit solutions in Microsoft Purview
• Knowledge check