AZ-500: Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel

Overview

Master Azure security through Microsoft Defender for Cloud and Sentinel, covering governance policies, threat protection, security posture management, and automated monitoring for comprehensive cloud environment protection.

Syllabus

- Module 1: Module 1: Implement and manage enforcement of cloud governance policiesIntroductionMicrosoft cloud security benchmark: Access, Data, Identity, Network, Endpoint, Governance, Recovery, Incident, and Vulnerability ManagementAzure governanceCreate, assign, and interpret security policies and initiatives in Azure PolicyAzure BlueprintsConfigure security settings by using Azure BlueprintDeploy secure infrastructures by using a landing zoneAzure Key VaultAzure Key Vault securityAzure Key Vault authenticationCreate and configure an Azure Key VaultRecommend when to use a dedicated Hardware Security Module (HSM)Configure access to Key Vault, including vault access policies and Azure role-based access controlManage certificates, secrets, and keysConfigure key rotationConfigure backup and recovery of certificates, secrets, and keysImplement security controls to protect backupsImplement security controls for asset managementKnowledge checkSummary - Module 2: Module 2: Manage security posture by using Microsoft Defender for CloudIntroductionImplement Microsoft Defender for CloudIdentify and remediate security risks by using the Microsoft Defender for Cloud Secure Score and InventoryAssess compliance against security frameworks and Microsoft Defender for CloudAdd industry and regulatory standards to Microsoft Defender for CloudAdd custom initiatives to Microsoft Defender for CloudConnect hybrid cloud and multicloud environments to Microsoft Defender for CloudImplement and use Microsoft Defender External Attack Surface ManagementKnowledge checkSummary - Module 3: Module 3: Configure and manage threat protection by using Microsoft Defender for CloudIntroductionEnable workload protection services in Microsoft Defender for CloudDefender for ServersDefender for StorageMalware scanning in Defender for StorageDetect threats to sensitive dataDeploy Microsoft Defender for StorageEnable configure Azure built-in policyConfigure Microsoft Defender plans for Servers, Databases, and StorageImplement and manage Microsoft Defender Vulnerability Management for Azure Virtual MachinesLog Analytics workspace Manage data retention in a Log Analytics workspaceDeploy the Azure Monitor AgentCollect data with Azure Monitor AgentData collection rules (DCRs) in Azure MonitorTransformations in data collection rules (DCRs)Monitor network security events and performance data by configuring data collection rules (DCRs) in Azure MonitorConnect your Azure subscriptionsJust-in-time machine accessEnable just-in-time accessContainer security in Microsoft Defender for ContainersManaged Kubernetes threat factorsDefender for Containers architectureConfigure Microsoft Defender for Containers componentsMicrosoft Defender for Cloud DevOps SecurityDevOps Security support and prerequisitesDevOps environment security postureConnect your GitHub lab environment to Microsoft Defender for CloudConfigure the Microsoft Security DevOps GitHub actionKnowledge checkSummary - Module 4: Module 4: Configure and manage security monitoring and automation solutionsIntroductionManage and respond to security alerts in Microsoft Defender for CloudConfigure workflow automation by using Microsoft Defender for CloudLog retention plans in Microsoft SentinelAlerts and Incidents from Microsoft SentinelConfigure data connectors in Microsoft SentinelEnable analytics rules in Microsoft SentinelConfigure automation in Microsoft SentinelAutomating Threat Response with Microsoft SentinelKnowledge checkSummary

Taught by

Tags