Explore digital courses

This module is designed to provide administrators with the knowledge and skills needed to plan and implement advanced security measures for Azure compute resources, safeguarding applications and data against evolving security threats.

Units in this learning path:

• Introduction
• Remote Access Public Endpoints Include Azure Bastion
• Azure Kubernetes Service Overview
• Best Practices Cluster Isolation Azure Kubernetes Service
• Microsoft Defender Containers
• Best Practices Authentication Authorization
• Monitor Container Resources Azure Container Instances
• Security Considerations Azure Container Instances
• Azure Container Registry Roles Permissions
• Azure Data Encryption
• Azure Security Baseline API Management
• Knowledge Check
• Summary

Products: Azure, Azure Disk Encryption, Azure Virtual Machines, Defender For Cloud, Microsoft Defender, Update Manager

Roles: Administrator, Security Engineer

Level: Intermediate

Subjects: Cloud Security

Duration: 82 minutes

Plan and implement an identity governance strategy

Modules in this learning path:

• Plan Implement Entitlement Management
• Plan Implement Manage Access Review
• Plan Implement Privileged Access
• Monitor Maintain Azure Active Directory

Products: Azure, Entra, Entra Identity Governance, Entra Id

Roles: Administrator, Security Engineer

Level: Intermediate

Subjects: Identity Access

Duration: 203 minutes

Ensuring that administrative roles are protected and managed to increase your Azure solution security is a must. Explore how to use PIM to protect your data and resources.

Units in this learning path:

• Introduction
• Define Strategy for Administrative Users
• Configure Privileged Identity Management for Azure Resources
• Configure Privileged Identity Management for Azure Ad Roles
• Assign Azure Ad Roles Privileged Identity Management
• Assign Azure Resource Roles Privileged Identity Management
• Plan Configure Privileged Access Groups
• Analyze Privileged Identity Management Audit History Reports
• Create Manage Emergency Access Accounts
• Knowledge Check
• Summary Resources

Products: Azure, Entra, Entra Identity Governance, Entra Id

Roles: Administrator, Identity Access Admin, Security Engineer

Level: Advanced

Subjects: Identity Access

Duration: 62 minutes

This module is designed to empower administrators with the knowledge and skills needed to plan and implement robust security measures for Azure SQL Database and Azure SQL Managed Instance, ensuring data protection and regulatory compliance.

Units in this learning path:

• Introduction
• Azure SQL Database
• Authorize Database Access
• Database Audit
• Microsoft Purview Governance Portal Use Cases
• Implement Data Classification Sensitive Information
• Dynamic Data Mask
• Transparent Data Encryption
• Always Encrypted
• Implement an Azure SQL Database Firewall
• Knowledge Check
• Summary

Products: Azure, Azure SQL Database, Azure SQL Managed Instance

Roles: Administrator, Security Engineer

Level: Intermediate

Subjects: Security

Duration: 78 minutes

This module focuses on equipping administrators with the knowledge and skills required to plan and implement robust security measures for private access to Azure resources, safeguarding sensitive data and enhancing network integrity.

Units in this learning path:

• Introduction
• Virtual Network Service Endpoints
• Private Endpoints
• Azure Private Link Services
• Integrate Your App with Azure Virtual Network
• Network Security Configurations App Service Environment
• Network Security Configurations Azure SQL Managed Instance
• Knowledge Check
• Summary

Products: Azure App Service, Azure Functions, Azure Virtual Network

Roles: Administrator, Security Engineer

Level: Intermediate

Subjects: Security

Duration: 56 minutes

Plan and implement security for public access to Azure resources

Units in this learning path:

• Introduction
• Plan Implement Transport Layer Security
• Azure Firewall Azure Firewall Manager Firewall Policies
• Azure Application Gateway
• Azure Web Application Firewall
• Front Door Content Development Network
• Azure Distributed Denial of Service Protection
• Knowledge Check
• Summary

Products: Azure App Service, Azure Application Gateway, Azure Ddos Protection, Azure Firewall Manager, Azure Front Door, Azure Web Application Firewall

Roles: Administrator, Security Engineer

Level: Intermediate

Subjects: Security

Duration: 61 minutes

This module is designed to provide administrators with the knowledge and skills required to plan and implement comprehensive security measures for Azure storage resources, safeguarding data integrity, confidentiality, and availability.

Units in this learning path:

• Introduction
• Azure Storage
• Authorize Requests Azure Storage
• Manage Storage Account Access Keys
• Select Configure Access Azure Files
• Authorize Access Blobs Use Microsoft Entra Id
• Authorize Access Tables Use Microsoft Entra Id
• Authorize Access Queue Data Azure Portal
• Recommendations Basic Data Protection
• Bring Your Own Key Specification
• Enable Infrastructure Encryption Double Encryption Data
• Knowledge Check
• Summary

Products: Azure, Azure Blob Storage, Azure Disk Storage, Azure Files, Azure Storage, Azure Storage Accounts

Roles: Administrator, Security Engineer

Level: Intermediate

Subjects: Information Protection Governance

Duration: 89 minutes

This module is designed to provide administrators with the knowledge and skills needed to plan and implement robust security measures for Azure virtual networks, ensuring the confidentiality, integrity, and availability of network resources.

Units in this learning path:

• Introduction
• Data Protection Logging Threat Detection Network Security
• Azure Virtual Network
• Azure Virtual Network Manager
• Network Security Groups Application Security Groups
• User Defined Routes
• Virtual Network Peering Gateways
• Virtual Wide Area Network
• Secure Virtual Private Network Connectivity Point to Site Site to Site
• Azure Encryption
• What Is Azure Virtual Network Encryption
• Azure Expressroute
• Expressroute Encryption
• Azure Best Practices Network Security
• Monitor Network Security
• Knowledge Check
• Summary

Products: Azure, Azure Firewall, Azure Firewall Manager, Azure Virtual Network, Azure Vpn Gateway

Roles: Administrator, Security Engineer

Level: Intermediate

Subjects: Security

Duration: 117 minutes

If you understand the security architecture of finance and operations apps, you can customize it to fit the requirements of your business. finance and operations apps, helps keep your sensitive data safe, and users focused on their roles.

Units in this learning path:

• 1 Plan and Implement Security in F and O Introduction
• 2 Understand the Security Architecture
• Encryption
• 3 Manage Users and Security
• 4 Set Up and Apply Segregation of Duties
• 5 Run Security Reports
• User Licensing Requirements
• Security Diagnostics Task Recordings
• 5 2 Extensible Data Security Policy
• 7 Exercise Import a User and Assign Security Role
• 6 Exercise Create a New User and Assign a Security Role
• 12 Plan and Implement Security in F and O Knowledge Check
• 13 Plan and Implement Security in F and O Summary

Products: Dynamics 365, Dynamics Finance, Dynamics Scm

Roles: Solution Architect, Functional Consultant, Administrator

Level: Intermediate

Subjects: Security, Business Applications

Duration: 116 minutes

Plan for cloud workload protections using Microsoft Defender for Cloud

Units in this learning path:

• Introduction
• Explain Azure Defender
• Understand Azure Secure Center
• Exercise Azure Security Center Interactive Guide
• Enable
• Knowledge Check
• Summary Resources

Products: Azure, Defender For Cloud

Roles: Security Operations Analyst

Level: Intermediate

Subjects: Threat Protection

Duration: 51 minutes

Information barriers enable administrators to define policies to allow or prevent communications between groups of users in Microsoft Teams chats and channels. When information barrier policies are in place, people who should not communicate with other specific users won't be able to find, select, chat, or call those users. With information barriers, checks are in place to prevent unauthorized communication.

Units in this learning path:

• Introduction
• Information Barriers
• Sample Scenario
• Summary Knowledge Check

Products: M365, Office 365

Roles: Administrator

Level: Intermediate

Subjects: Information Protection Governance, Communication

Duration: 25 minutes

Learn how to plan your deployment of Microsoft Defender for IoT to monitor your OT network.

Units in this learning path:

• Introduction
• Describe Process to Deploy
• Identify Sites Zones
• Determine Connection Options
• Identify Azure on Premises Roles
• Summary

Products: Defender For Iot

Roles: Solution Architect

Level: Intermediate

Subjects: Security

Duration: 23 minutes