Explore digital courses

Organizations need to classify, label, and protect sensitive data to prevent exposure and ensure compliance. Microsoft Purview solutions provide data classification, sensitivity labels, and encryption to secure information across Microsoft 365 and on-premises storage. This learning path aligns with exam SC-401: Microsoft Information Security Administrator.

Modules in this learning path:

• Purview Protect Sensitive Data
• M365 Compliance Information Classify Data
• Purview Review Analyze Data Classification
• Create Manage Sensitive Information Types
• M365 Compliance Information Protect Information
• Apply Manage Sensitivity Labels
• Purview Protect on Premises Data
• Audit Encryption
• Deploy Message Encryption Microsoft 365

Products: Microsoft Purview, M365

Roles: Auditor, Administrator, Ip Admin

Level: Intermediate

Subjects: Security, Information Protection Governance

Duration: 376 minutes

After completing this learning path, you’ll know how to implement identity in Azure. You’ll be able to extend an existing on-premises Active Directory identity service into Azure.

Modules in this learning path:

• Implement Hybrid Identity with Windows Server
• Deploy Manage Azure Iaas Active Directory Domain Controllers Azure

Products: Azure, Entra Id, Azure Cloud Shell, Azure Portal, Azure Virtual Machines

Roles: Administrator, Solution Architect, Technology Manager

Level: Intermediate

Subjects: Identity Access, Virtual Machine

Duration: 148 minutes

This learning path deals with securing your Azure resources. After completing the learning path, you’ll be able to determine if your Azure IaaS workloads have any security vulnerabilities, and remediate those potential security vulnerabilities.

Modules in this learning path:

• Audit Security of Windows Server Iaas Vms
• Manage Azure Updates
• Configure Bitlocker Disk Encryption for Windows Iaas Vms
• Implement Change Tracking File Integrity Monitoring for Windows Iaas Vms
• Implement Windows Server Iaas Vm Network Security

Products: Azure, Azure Cloud Shell, Azure Monitor, Azure Portal, Azure Virtual Machines

Roles: Administrator, Solution Architect, Technology Manager

Level: Intermediate

Subjects: Security

Duration: 234 minutes

Implement Windows Server IaaS VM network security

Units in this learning path:

• Introduction
• Groups Windows Iaas Vms
• Azure Firewall Windows Iaas Vms
• Windows Firewall Windows Iaas Vms
• Choose Appropriate Filtering Solution
• Deploy Configure Azure Firewall Using Azure Portal
• Capture Network Traffic with Network Watcher
• Log Network Traffic Using Azure Portal
• Knowledge Check
• Summary

Products: Azure, Azure Cloud Shell, Azure Portal, Azure Virtual Machines

Roles: Administrator, Solution Architect, Technology Manager

Level: Intermediate

Subjects: Cloud Security, Virtual Machine

Duration: 64 minutes

This learning path addresses problems related to managing, monitoring, and securing a hybrid environment. After completing the learning path, you’ll be able to manage and maintain hybrid Azure and on-premises workloads.

Modules in this learning path:

• Manage Hybrid Workloads with Azure Arc
• Monitor Windows Server Iaas Vms Hybrid Instances
• Audit Security of Windows Server Iaas Vms
• Manage Azure Updates

Products: Azure, Azure Cloud Shell, Azure Monitor, Azure Portal

Roles: Administrator, Solution Architect, Technology Manager

Level: Intermediate

Subjects: Security

Duration: 175 minutes

Implement Windows security enhancements with Microsoft Defender for Endpoint

Units in this learning path:

• Introduction
• Understand Attack Surface Reduction
• Enable Attack Surface Reduction Rules
• Knowledge Check
• Summary Resources

Products: Defender Xdr, Windows, Defender Endpoint

Roles: Security Operations Analyst

Level: Intermediate

Subjects: Cloud Security, Compliance, Security, Threat Protection

Duration: 31 minutes

This credential earner has the advanced competencies to implement a zero trust security architecture based on insights gathered from a simulated stakeholder interview. The earner has knowledge of modeling a zero trust framework and the practical strategies to enhance organizational security. The earner has developed transferable employability skills and gained real industry experience in a project-based learning opportunity.

Implement a secure environment for a database service

Modules in this learning path:

• Configure Database Authentication Authorization
• Protect Data Transit at Rest
• Implement Compliance Controls for Sensitive Data

Products: Azure, Azure SQL Database, SQL Server

Roles: Data Analyst, Data Engineer, Database Administrator

Level: Intermediate

Subjects: Security

Duration: 238 minutes

Explore how to use built-in Azure roles, managed identities, and RBAC-policy to control access to Azure resources. Identity is the key to secure solutions.

Units in this learning path:

• Introduction
• Assign Azure Roles
• Configure Custom Azure Roles
• Create Configure Managed Identities
• Access Managed Identities
• Analyze Azure Role Permissions
• Configure Azure Key Vault Rbac Policies
• Retrieve Objects from Azure Key Vault
• Knowledge Check
• Summary Resources

Products: Azure, Entra, Entra Id

Roles: Administrator, Identity Access Admin, Security Engineer

Level: Advanced

Subjects: Identity Access, Infrastructure, Security

Duration: 30 minutes

Implement access management for apps

Modules in this learning path:

• Plan Design Integration of Enterprise Apps for Sso
• Implement Monitor Integration of Enterprise Apps for Sso
• Implement App Registration
• Register Apps Use Microsoft Entra Id

Products: Azure, Entra, Entra Id

Roles: Administrator, Security Engineer

Level: Intermediate

Subjects: Identity Access

Duration: 154 minutes

Build a complete event collection and response architecture in Microsoft Sentinel. Set up and secure a Microsoft Sentinel workspace, deploy Content Hub solutions, connect Azure resource data, collect Linux and Windows security events with data collection rules, implement automated response workflows with Logic Apps playbooks, and manage data retention for compliance.

Modules in this learning path:

• Create Manage Azure Sentinel Workspaces
• Manage Content Microsoft Sentinel
• Connect Microsoft Services to Azure Sentinel
• Connect Syslog Data Sources to Azure Sentinel
• Connect Common Event Format Cef Logs to Azure Sentinel
• Connect Windows Hosts to Azure Sentinel
• Implement Automation Rules Playbooks Sentinel
• Manage Data Storage Audit Logs Sentinel

Products: Microsoft Sentinel, Defender Xdr, Azure Log Analytics, Azure Monitor

Roles: Security Engineer

Level: Intermediate

Subjects: Security, Cloud Security

Duration: 218 minutes

Implement an authentication and access management solution

Modules in this learning path:

• Secure Aad Users with Mfa
• Manage User Authentication
• Plan Implement Administer Conditional Access
• Manage Azure Ad Identity Protection
• Implement Access Management for Azure Resources
• Deploy Configure Microsoft Entra Global Secure Access

Products: Azure, Entra, Entra Id

Roles: Administrator, Security Engineer

Level: Intermediate

Subjects: Identity Access

Duration: 298 minutes