Explore digital courses

Learn how Microsoft Online Services investigates, manages, and responds to security concerns to protect customers and the Microsoft cloud environment.

Units in this learning path:

• Introduction
• Incident Response Phase One
• Incident Response Phase Two
• Incident Response Phase Three
• Incident Response Phase Four
• Customer Notification Process
• Summary Knowledge Check

Products: M365

Roles: Auditor, Privacy Manager, Risk Practitioner

Level: Beginner

Subjects: Cloud Security, Threat Protection

Duration: 22 minutes

Learn how Microsoft Online Services procure, monitor, and manage subprocessors to help protect data from unauthorized access and inappropriate use.

Units in this learning path:

• Introduction
• Subprocessor Requirement
• Access Controls Requirements
• Additional Subprocessor Requirements
• Subprocessor Onboarding
• Subprocessor Offboarding
• Summary Knowledge Check

Products: M365

Roles: Auditor, Risk Practitioner, Privacy Manager

Level: Beginner

Subjects: Threat Protection, Cloud Security, Data Management

Duration: 27 minutes

Understand Microsoft Priva.

Units in this learning path:

• Introduction
• Address Privacy Challenges
• Priva Overview
• Navigate Priva Portal
• Configure Priva Settings
• Knowledge Check
• Summary

Products: Priva, Microsoft Purview, M365

Roles: Auditor, Administrator, Privacy Manager

Level: Intermediate

Subjects: Compliance, Security

Duration: 26 minutes

Understand Microsoft Purview Insider Risk Management.

Units in this learning path:

• Introduction
• Insider Risk Concept
• Insider Risk Management Overview
• Insider Risk Management Features
• Case Study Protect Insider Data
• Knowledge Check
• Summary

Products: Microsoft Purview, M365

Roles: Auditor, Administrator, Risk Practitioner

Level: Intermediate

Subjects: Information Protection Governance, Security

Duration: 28 minutes

Understand Microsoft Purview eDiscovery.

Units in this learning path:

• Introduction
• Understand Ediscovery
• Compare Classic New Ediscovery
• Understand Ediscovery Lifecycle
• Understand Ediscovery Permissions
• Knowledge Check
• Summary

Products: Microsoft Purview, M365

Roles: Auditor, Administrator

Level: Intermediate

Subjects: Information Protection Governance, Security, Compliance

Duration: 25 minutes

Learn how Microsoft uses Defense-In-Depth to secure our datacenters against unauthorized access, environmental hazards, and other physical threats, as well as how Microsoft implements resilient architecture, business continuity, and disaster recovery to maintain the availability of our services.

Units in this learning path:

• Introduction
• Architecture Infrastructure
• Risk Management
• Environmental Safeguards
• Physical Security
• Asset Management
• Device Security
• Disaster Recovery
• Summary Knowledge Check

Products: M365

Roles: Auditor, Risk Practitioner, Privacy Manager

Level: Beginner

Subjects: Security

Duration: 30 minutes

Understand how Microsoft Defender for Cloud strengthens AI security in Azure through posture management and integration with key governance and identity services.

Units in this learning path:

• Introduction
• Understand AI Services Azure
• Understand AI Security Risks
• Guardrails Protections Azure
• Azure Security Governance AI Workloads
• Knowledge Check
• Summary

Products: Azure, Azure AI Foundry, Defender For Cloud, Entra Id

Roles: Security Engineer

Level: Intermediate

Subjects: Cloud Security

Duration: 26 minutes

Amazon EBS Volume Encryption is an AWS encryption service that helps you protect your data. In this introductory course, we describe how this service works in conjunction with AWS Key Management Service (Amazon KMS) and how you can begin using it…

Threat modeling helps you generate a list of potential threats using STRIDE and find ways to reduce or eliminate risk with corresponding security controls.

Units in this learning path:

• 1 Introduction
• 1b Threat Modeling Framework
• 2 Spoofing Pretending to Be Someone or Something Else
• 3 Tampering Changing Data Without Authorization
• 4 Repudiation Not Claiming Responsibility for an Action Taken
• 5 Information Disclosure Seeing Data I Am Not Supposed to See
• 6 Denial of Service Overwhelming the System
• 7 Elevation of Privilege Having Permissions I Should Not Have
• 8 Summary

Products: Azure, Defender For Cloud, M365 Security Center, Defender For Cloud Apps

Roles: Administrator, Developer, Devops Engineer, Security Engineer, Solution Architect

Level: Beginner

Subjects: Threat Protection

Duration: 57 minutes

Learn how you can improve security posture and governance in Microsoft Power Platform.

Modules in this learning path:

• Security Governance Intro
• Plan Manage Environment
• Get Started Center Excellence
• Manage Solutions Power Automate
• Implementation Recommendations
• Implement Power Virtual Agents
• Manage Environmental Changes
• Templates Governance Policies

Products: Power Automate, Power Platform, Power Apps

Roles: Administrator, Functional Consultant

Level: Intermediate

Subjects: Security

Duration: 410 minutes

You can use any canvas, physical or virtual, to create a data-flow diagram. Engineers at Microsoft recommend three tools to help you in your threat modeling journey.

Units in this learning path:

• 1 Introduction
• 1b Recommended Tools
• 2 Threat Modeling Tool
• 3 Visio
• 5 Summary

Products: Azure, Defender For Cloud, M365 Security Center, Defender For Cloud Apps

Roles: Administrator, Developer, Devops Engineer, Security Engineer, Solution Architect

Level: Beginner

Subjects: Threat Protection

Duration: 18 minutes

Learn about templates in Microsoft Power Platform.

Units in this learning path:

• 1 Introduction
• 2 Prerequisites
• 3 Templates
• 4 Exercise
• 5 Check
• 6 Summary

Products: Power Automate, Power Platform, Power Apps

Roles: Administrator, Functional Consultant

Level: Intermediate

Subjects: Information Protection Governance

Duration: 41 minutes