AZ-500: Microsoft Azure Security Technologies


Microsoft Azure Security Technologies

Koulutuksen tarkemmat tiedot

Kouluttajat


Markus Lintuala
Senior System Consultant
Pitkä ja laaja käytännön kokemus pilvipalveluista, Microsoft 365 ratkaisuista sekä Microsoftin loppukäyttäjä- ja infraratkaisuista.

  • Microsoft Certified Azure Solutions Architect Expert
  • Microsoft 365 Certified: Enterprise Administration Expert
  • Microsoft Certified Trainer
  • Muut sertifioinnit

Mika Vilpo
Senior System Consultant
Yli kymmenen vuoden kokemus pilvipalveluista ja identiteetinhallinnasta. Vahvaa osaamista Microsoftin tuotteista infranäkökulmasta.

  • Microsoft Certified Azure Solutions Architect Expert
  • MCSE Cloud Platform and Infrastructure
  • Microsoft Certified Trainer


Agenda

Module 1: Manage Identity and Access

This module covers Azure Active Directory, Azure Identity Protection, Enterprise Governance, Azure AD PIM, and Hybrid Identity.
Lessons
  • Azure Active Directory
  • Azure Identity Protection
  • Enterprise Governance
  • Azure AD Privileged Identity Management
  • Hybrid Identity
Lab : Role-Based Access Control
Lab : Azure Policy
Lab : Resource Manager Locks
Lab : MFA, Conditional Access and AAD Identity Protection
Lab : Azure AD Privileged Identity Management
Lab : Implement Directory Synchronization

Module 2: Implement Platform Protection

This module covers perimeter, network, host, and container security.
Lessons
  • Perimeter Security
  • Network Security
  • Host Security
  • Container Security
Lab : Network Security Groups and Application Security Groups
Lab : Azure Firewall
Lab : Configuring and Securing ACR and AKS
After completing this module, students will be able to:
  • Implement perimeter security strategies including Azure Firewall.
  • Implement network security strategies including Network Security Groups and Application Security Groups.
  • Implement host security strategies including endpoint protection, remote access management, update management, and disk encryption.
  • Implement container security strategies including Azure Container Instances, Azure Container Registry, and Azure Kubernetes.

Module 3: Secure Data and Applications

This module covers Azure Key Vault, application security, storage security, and SQL database security.
Lessons
  • Azure Key Vault
  • Application Security
  • Storage Security
  • SQL Database Security
Lab : Key Vault (Implementing Secure Data by setting up Always Encrypted)
Lab : Securing Azure SQL Database
Lab : Service Endpoints and Securing Storage
After completing this module, students will be able to:
  • Implement Azure Key Vault including certificates, keys, and secretes.
  • Implement application security strategies including app registration, managed identities, and service endpoints.
  • Implement storage security strategies including shared access signatures, blob retention policies, and Azure Files authentication.
  • Implement database security strategies including authentication, data classification, dynamic data masking, and always encrypted.

Module 4: Manage Security Operations

This module covers Azure Monitor, Azure Security Center, and Azure Sentinel.
Lessons
  • Azure Monitor
  • Azure Security Center
  • Azure Sentinel
Lab : Azure Monitor
Lab : Azure Security Center
Lab : Azure Sentinel
After completing this module, students will be able to:
  • Implement Azure Monitor including connected sources, log analytics, and alerts.
  • Implement Azure Security Center including policies, recommendations, and just in time virtual machine access.
  • Implement Azure Sentinel including workbooks, incidents, and playbooks.