Explore digital courses

Learn about how Microsoft 365 uses comprehensive audit logging and monitoring to support security monitoring, maintain service availability, and meet compliance requirements.

Units in this learning path:

• Introduction
• Microsoft365 Log Collection
• Log Protection Retention
• Log Analysis Reporting
• Summary Knowledge Check

Products: M365

Roles: Auditor, Privacy Manager, Risk Practitioner

Level: Beginner

Subjects: Compliance, Finance Accounting, Cloud Security

Duration: 19 minutes

Learn how the architecture of Microsoft 365 implements security and privacy features to protect customers who use Microsoft 365 multi-tenant services.

Units in this learning path:

• Introduction
• Security Principles
• Understand Isolation
• Dos Attacks
• Resiliency
• Architecture Validation
• Summary Knowledge Check

Products: M365

Roles: Auditor, Risk Practitioner, Privacy Manager

Level: Beginner

Subjects: Architecture, Threat Protection, Cloud Computing

Duration: 34 minutes

Learn how Microsoft 365 encrypts data-at-rest and in-transit, securely manages encryption keys, and provides key management options to customers to meet their business needs and compliance obligations.

Units in this learning path:

• Introduction
• Data at Rest Encryption
• Microsoft Managed Keys
• Customer Key
• Encryption in Transit
• Summary Knowledge Check

Products: M365

Roles: Auditor, Risk Practitioner, Privacy Manager

Level: Beginner

Subjects: Information Protection Governance, Threat Protection, Compliance

Duration: 20 minutes

Learn how Microsoft implements organization-wide security and privacy governance to support the secure operation of Microsoft 365 services and maintain compliance with regulatory requirements and customer commitments.

Units in this learning path:

• Introduction
• Organizational Structure
• Policy Framework
• Policy Standards Program
• Information Security Policy
• Personnel Security Governance
• Summary Knowledge Check

Products: M365

Roles: Auditor, Risk Practitioner, Privacy Manager

Level: Beginner

Subjects: Information Protection Governance

Duration: 28 minutes

Learn how Microsoft 365 implements the principle of Zero Standing Access (ZSA) to protect production environments and customer data using Just-In-Time (JIT) and Just-Enough-Access (JEA).

Units in this learning path:

• Introduction
• Recognize Managed Account Types
• Tools Technologies Used
• Prerequisites Team Account Creation
• Privileged Access
• Customer Lockbox
• Access Control Management
• Summary Knowledge Check

Products: M365

Roles: Auditor, Privacy Manager, Risk Practitioner

Level: Beginner

Subjects: Identity Access, Information Protection Governance

Duration: 29 minutes

Learn about Microsoft 365 privacy standards, the reasons we have them in place, and how they differentiate Microsoft in protecting and respecting customer data.

Units in this learning path:

• Introduction
• Key Privacy Terms
• Data Lifecycle
• Collection
• Processing
• Third Party Sharing
• Retention
• Destruction
• Roles Responsibilities
• General Data Protection Regulation
• Summary Knowledge Check

Products: M365

Roles: Auditor, Risk Practitioner, Privacy Manager

Level: Beginner

Subjects: Security, Compliance

Duration: 39 minutes

Learn how Microsoft 365 identifies, assesses, responds to, and manages risks to protect customers and the Microsoft 365 environment.

Units in this learning path:

• Introduction
• Enterprise Risk Management
• Overview Risk Management
• Risk Identification Assessment
• Risk Response
• Summary Knowledge Check

Products: M365

Roles: Auditor, Risk Practitioner, Privacy Manager

Level: Beginner

Subjects: Information Protection Governance, Cloud Security, Threat Protection

Duration: 17 minutes

Learn how Microsoft 365 proactively monitors information system assets for vulnerabilities, assesses the risks associated with discovered vulnerabilities, and remediates them in a timely manner.

Units in this learning path:

• Introduction
• Machine State Scanning
• Patch Management
• Vulnerability Configuration Scanning
• Attack Simulation Penetration Testing
• Summary Knowledge Check

Products: M365

Roles: Auditor, Risk Practitioner, Privacy Manager

Level: Beginner

Subjects: Threat Protection, Information Protection Governance

Duration: 19 minutes

This module equips learners to describe Microsoft Entra ID - a cloud-based identity and access management service. They'll compare it with AD DS, understand its role as a directory for cloud services, and learn about its security features. They'll also learn about Microsoft Entra Domain Services.

Units in this learning path:

• Introduction
• Examine Azure Active Directory
• Compare Azure Active Directory Domain Services
• Examine Azure Directory Service Cloud Apps
• Compare Azure Premium P1 P2 Plans
• Examine Azure Domain Services
• Knowledge Check
• Summary

Products: Azure, Entra Id, Active Directory

Roles: Administrator, Identity Access Admin

Level: Intermediate

Subjects: Identity Access, Infrastructure, It Management Monitoring, Employee Management

Duration: 31 minutes

Learn how Microsoft builds resilient cloud services to meet customer expectations in the face of faults and challenges to normal operations, maintains optimal service availability, and fulfills business continuity requirements.

Units in this learning path:

• Introduction Resiliency Continuity
• Engineer Resilience
• Explore Program
• Assessment Activities
• Planning Phase
• Capability Validation
• Plan Availability Monitoring Capacity
• Summary Knowledge Check

Products: M365

Roles: Auditor, Risk Practitioner, Privacy Manager

Level: Beginner

Subjects: Business Applications

Duration: 30 minutes

Learn how Microsoft Online Services follow Microsoft’s Security Development Lifecycle (SDL) to build security and privacy into our products and services.

Units in this learning path:

• Introduction
• Security Training Requirements
• Security Privacy Design
• Security Tool Automation
• Application Penetration Testing
• Support Secure Deployment
• Safe Deployment Process
• Open Source Security
• Summary Knowledge Check

Products: M365

Roles: Auditor, Privacy Manager, Risk Practitioner

Level: Beginner

Subjects: Cloud Security, Threat Protection, Information Protection Governance

Duration: 41 minutes

Learn how Microsoft Online Services investigates, manages, and responds to security concerns to protect customers and the Microsoft cloud environment.

Units in this learning path:

• Introduction
• Incident Response Phase One
• Incident Response Phase Two
• Incident Response Phase Three
• Incident Response Phase Four
• Customer Notification Process
• Summary Knowledge Check

Products: M365

Roles: Auditor, Privacy Manager, Risk Practitioner

Level: Beginner

Subjects: Cloud Security, Threat Protection

Duration: 22 minutes