SC-500 & AZ-500 Hands-On Certification Course with Sims
Course Description
We really hope you'll agree, this training is way more than the average course on Udemy!
Have access to the following:
Training from an instructor of over 25+ years who has trained thousands of people and also a Microsoft Certified Trainer
Lecture that explains the concepts in an easy to learn method for someone that is just starting out with this material
Instructor led hands on and simulations to practice that can be followed even if you have little to no experience
TOPICS COVERED INCLUDING HANDS ON LECTURE AND PRACTICE TUTORIALS:
Secure access to resources by using Microsoft Entra ID
Understanding the concepts of Privileged Identity Management (PIM)
Implement and configure Privileged Identity Management (PIM)
Understanding the concepts of conditional access policies
Implement conditional access policies
Implement & configure authentication methods, multifactor (MFA) & passwordless
Understanding multifactor authentication (MFA)
Implement and configure multifactor authentication (MFA)
Understanding the concepts of enterprise applications and app registrations
Implement and configure identity for applications with app registrations
Implement and configure app registration permission scopes
Implement and configure app registration permission with roles
Implement and configure identity for applications with enterprise applications
Manage permission grants and consent settings
Understanding the concepts of managed identities and service principals
Creating a managed identities for Azure resources
Implement a virtual machine to used with a managed identity
Implement and configure managed identities for Azure resources
Secure secrets and keys by using Azure Key Vault
Deploy Key Vault and configure settings
Key Vault security with Hardware Security Modules (HSMs)
Configure access to Key Vault
Manage keys, secrets, and certificates
Configure Key rotation
Implement backup and recovery of certificates, secrets, and keys
Implement governance to enforce security and regulatory compliance
Implement and configure security controls by using Azure Policy and more
Introduction to Microsoft Defender for Cloud
Costs involved in using Microsoft Defender for Cloud
Setting up plans for using Microsoft Defender for Cloud
Evaluate regulatory compliance by using Microsoft Defender for Cloud
Security controls in Defender for Cloud, security standards & recommendations
Implement resource groups
Implement resource locks
Understanding the concepts of roles in Azure
Manage Azure built-in role assignments
Manage custom roles, including Azure roles and Microsoft Entra roles
Implement security for storage accounts
Understanding the concepts of storage accounts
Implement and configure a storage account
Configure Azure Storage firewall rules
Implement and configure security for storage accounts with SAS and more
Implement Defender for Storage threat protection configurations
How to test Defender for Storage by uploading malware
Accessing Defender for Storage recommendations and alerts
Manage access to storage, including access policies
Implement security for databases
Understanding the concepts of relational databases before using Azure SQL
Implement a platform-level Azure SQL configuration
Setting up SQL Server Management Studio (SSMS) for connecting to SQL
How to connect to a SQL database with SSMS
Configure Defender for Databases protection across Azure database services
Configure database vulnerability assessment support for Defender for Databases
Implement security for Azure network services
Introduction to VNets, peering, Network Security Groups (NSGs), and VPN gateways
Setting up a virtual machine for use in hands on
Implement and configure virtual networks
Implement and configure virtual network peering
Configure user-defined routes (UDRs)
Implement & manage network security groups NSG & application security groups ASG
Understanding the concepts of Azure Virtual WAN
Azure Virtual WAN SKUs
Architectures used for configuring the security for an Azure Virtual WAN
Azure Private Link services to secure access to network resources
Implement and configure Azure Firewall
Direct traffic through the Azure Firewall
Implement security for AI
Understanding how Copilot AI accesses data
Identify which Copilot features can be enabled or disabled
Identify use cases for AI Researcher, Analyst, and custom agents
Manage access to Copilot with licenses
Manage user access to agents
Enable and configure a Microsoft Copilot Studio agent
Configure approval for accessing an agent
Implement security for servers and virtual machines (VMs)
Implement and configure disk encryption
Plan and implement Azure Bastion to support just-in-time (JIT) VM access
Extend security controls to hybrid and multicloud servers by using Azure Arc
Understanding the concepts of Defender for Servers
Setting up a virtual server for Onboarding to Defender for Servers/Cloud
Verifying a virtual server is Onboarded into Defender for Servers/Cloud
Configure Defender for Servers settings, including vulnerability scanning & EDR
Implement security for application platform services
Detect risks in container workloads by using Defender for Containers
Enable Defender for Containers through Defender for Cloud
Implement and configure security controls for Azure Kubernetes Service (AKS)
Implement and configure an Azure Container Registry
Implement and configure security controls for Azure Container Registry
Implement and configure an Azure Container Instance
Implement and configure an Azure Container App
Plan support for Azure App Service
Implement and configure an Azure App Service Plan
Implement and configure and Azure App Service
Implement and configure security controls for Azure App Service
Understanding the concepts of Azure Web Application Firewall
Implement and configure Azure Web Application Firewall
Manage security posture by using Defender for Cloud
Understanding the concepts of Cloud Security Posture Management (CSPM)
Identity security features with Defender CSPM
Enable and configure Defender for Cloud workload protection plans
Concepts of Common Vulnerabilities and Exposures (CVEs)
Configure Microsoft Defender Vulnerability Management settings for Azure VMs
Setup a group to represent a security team for Defender Vulnerability Management
Identify security risks by using Defender CSPM and assign recommendations
Discover unprotected assets & vulnerabilities External Attack Surface Management
Implement activity and event collection in Microsoft Sentinel
Understanding the concepts of using Microsoft Sentinel
Create and connect workspaces in Microsoft Sentinel
Assign roles in Microsoft Sentinel
Implement and use content hub solutions
What are data connectors in Microsoft Sentinel?
Configure and use Microsoft data connectors for Azure resources
Setting up Azure Monitor Agent (AMA) and data collection rules
Implement and configure syslog and Common Event Format (CEF) event collections
Implement and configure collection Windows events by using data collection rules
Create custom log tables in the workspace to store ingested data
Ingesting data from Azure and Entra ID
Understanding automation rules and Microsoft Sentinel playbooks
Implement automation rules and playbooks in Microsoft Sentinel
Implement data retention in Microsoft Sentinel data stores
Implement Microsoft Security Copilot
Understanding the purpose of Microsoft Security Copilot
Generating sample data for querying with Security Copilot
What are Security compute units (SCUs)
Warning before allocating Security compute units (SCUs) for Security Copilot
Configure a workspace for Security Copilot and allocate SCUs
Manage permissions and roles in Security Copilot
What are Prompts, Promptbooks, Roles and Plugins?
Enable and configure plugins
Investigating a VM incident using a prompt in Security Copilot
Investigating an Azure Storage incident using a prompt in Security Copilot
Finishing Up
Where do I go from here?