Explore digital courses

Learn to design and implement strong authentication controls, apply Just-in-Time privileged access strategies, and extend identity-based security to AI-powered applications using Microsoft Entra.

Modules in this learning path:

• Manage Implement Authentication Methods
• Implement Configure Privileged Identity Management
• Copilot Declarative Agent API Plugin Auth

Products: Entra, Entra Id

Roles: Security Engineer

Level: Intermediate

Subjects: Identity Access, Security

Duration: 90 minutes

Microsoft 365 Copilot changes how users access, combine, and generate content across organizational data. Learn how Microsoft Purview helps you gain visibility into AI activity, protect sensitive information, detect risky behavior, and govern Microsoft 365 Copilot interactions.

Modules in this learning path:

• Purview AI Understand Risks
• Purview Audit Search Investigate
• M365 Compliance Information Protect Information
• Purview Data Loss Prevention Create Manage Policies
• Purview Create Manage Insider Risk Policy
• M365 Compliance Insider Prepare Communication Compliance
• Purview AI Secure Copilot

Products: Microsoft Purview, M365, Microsoft 365 Copilot

Roles: Auditor, Administrator, Ip Admin

Level: Intermediate

Subjects: Security, Compliance

Duration: 371 minutes

Row-level security (RLS) and Object-level security (OLS) allows you to create a single or a set of reports that targets data for a specific user. In this module, you'll learn how to implement RLS by using either a static or dynamic method and how Microsoft Power BI simplifies testing RLS in Power BI Desktop and Power BI service.

Units in this learning path:

• 1 Introduction
• 2 Static Method
• 3 Dynamic Method
• 3a Use Single Sign on for Directquery
• 3b Restrict Access to Power Bi Model Objects
• Lab
• 4 Check
• 5 Summary

Products: Power Bi, Power Platform

Roles: Data Analyst

Level: Intermediate

Subjects: Information Protection Governance

Duration: 39 minutes

Microsoft Purview provides tools to secure developer AI environments by discovering apps, assessing data access, and applying appropriate protections. This includes detecting generative AI usage, assigning user risk levels, and applying dynamic enforcement based on user behavior and data sensitivity.

Units in this learning path:

• Introduction
• Understand Developer AI Risks
• Discover Assess AI Apps
• Classify Protect Retain AI Prompt Data
• Azure AI Services Protections
• Entra AI Apps
• Secure Copilot Studio
• Manage Copilot Fabric Risks
• Investigate Respond AI Activity
• Knowledge Check
• Summary

Products: M365, Microsoft Purview, Entra, Microsoft Copilot Studio, Fabric, Foundry Tools

Roles: Administrator, Developer, Auditor

Level: Intermediate

Subjects: Security, Generative AI, Insider Risk, Compliance

Duration: 63 minutes

Learn how to use Zero Trust to secure endpoints to protect your organization and its users.

Units in this learning path:

• Introduction
• What Are Endpoints
• Protect Endpoints
• Knowledge Check
• Summary

Products: M365

Roles: Administrator, Student

Level: Beginner

Subjects: Security

Duration: 13 minutes

Harden Azure remote and hybrid connectivity to reduce attack surface and enforce Zero Trust access principles. Assess VPN gateway security risks, apply hardening controls, and deploy Microsoft Entra Private Access to replace broad VPN access with identity-aware, per-application access.

Units in this learning path:

• Introduction
• Assess Security Risks Hybrid Connectivity
• Harden Vpn Gateway Security
• Replace Broad Vpn Access Entra Private Access
• Knowledge Check
• Summary

Products: Azure, Azure Vpn Gateway, Entra Id

Roles: Security Engineer

Level: Intermediate

Subjects: Security, Networking

Duration: 39 minutes

Discover how to classify data, apply sensitivity labels, enforce DLP policies, and use Security Copilot to protect information across Microsoft 365.

Modules in this learning path:

• Purview Ninja Discover Define Sits
• Purview Ninja Label Sensitive Data
• Purview Ninja Security Copilot
• Purview Ninja Prevent Data Loss Share Transfer
• Purview Ninja Safeguard Remote Work

Products: Microsoft Purview, M365

Roles: Administrator

Level: Intermediate

Subjects: Security, Compliance

Duration: 117 minutes

Learn how to use Azure role-based access control to effectively manage your team's access to Azure resources.

Units in this learning path:

• 1 Introduction
• 2 Rbac Overview
• 3 Knowledge Check Rbac Overview
• 4 List Access
• 5 Grant Access
• 6 View Activity Logs
• 7 Knowledge Check Rbac
• 8 Summary

Products: Azure, Azure Portal, Entra Id, Azure Rbac

Roles: Administrator, Solution Architect, Security Engineer

Level: Beginner

Subjects: Identity Access

Duration: 37 minutes

Microsoft Defender for Cloud Apps is a cloud access security broker (CASB) that operates on multiple clouds. It provides rich visibility, control over data travel, and sophisticated analytics to identify and combat cyberthreats across all your cloud services. Learn how to use Defender for Cloud Apps in your organization.

Units in this learning path:

• Introduction
• Framework
• Cloud Discovery
• Conditional Access App Control
• Walkthrough
• Classify Protect Sensitive Information
• Detect Threats
• Knowledge Check
• Summary

Products: M365, Defender For Cloud Apps

Roles: Administrator

Level: Beginner

Subjects: Cloud Security

Duration: 69 minutes

This learning path helps you leverage the built-in Azure services for securing app data, ensuring that only authorized services and clients have access.

Modules in this learning path:

• Secure Azure Storage Account
• Secure Azure Resources with Rbac

Products: Azure, Azure Key Vault, Azure Storage, Azure Cosmos Db, Azure Synapse Analytics, Azure SQL Database

Roles: Developer, Administrator

Level: Beginner, Intermediate

Subjects: Cloud Security

Duration: 82 minutes

Learn about the benefits of and how to onboard Azure Arc-enabled servers to Microsoft Defender for Cloud, Microsoft Defender for Servers, and Microsoft Sentinel.

Units in this learning path:

• Introduction
• Assess Secure Defend Azure Arc Enabled Servers with Microsoft Defender for Cloud
• Onboard Azure Arc Enabled Servers to Microsoft Defender for Cloud
• Secure Azure Arc Enabled Servers with Microsoft Defender for Servers
• Threat Intelligence for Azure Arc Enabled Servers with Microsoft Sentinel
• Onboard Azure Arc Enabled Servers to Microsoft Sentinel
• Knowledge Check
• Summary

Products: Azure, Azure Arc

Roles: Developer

Level: Beginner

Subjects: Security

Duration: 38 minutes

Learn how to use the foundation of threat modeling to identify enterprise risks and find ways to reduce or eliminate them.

Units in this learning path:

• 1 Introduction
• 2 Assessment Questions
• 3 Gather Data
• 4 Visualize Risk
• 5 Eliminate Risk
• 6 Summary

Products: Azure, Defender For Cloud, M365 Security Center, Defender For Cloud Apps

Roles: Administrator, Developer, Devops Engineer, Security Engineer, Solution Architect

Level: Beginner, Intermediate

Subjects: Threat Protection

Duration: 72 minutes