In this course students will gain the knowledge and skills needed to implement security controls, maintain the security posture, and identify and remediate vulnerabilities by using a variety of security tools. The course covers scripting and automation, virtualization, and cloud N-tier architecture
Course goals
After completing this course, students will be able to:
• Describe specialized data classifications on Azure
• Identify Azure data protection mechanisms
• Implement Azure data encryption methods
• Secure Internet protocols and how to implement them on Azure
• Describe Azure security services and features
Course Outline
Module 1: Identity and Access
Configure Azure Active Directory for Azure workloads and subscriptions
Configure Azure AD Privileged Identity Management
Configure security for an Azure subscription
Module 2: Platform Protection
Understand cloud security
Build a network
Secure network
Implement host security
Implement platform security
Implement subscription security
Module 3: Security Operations
Configure security services
Configure security policies by using Azure Security Center
Manage security alerts
Respond to and remediate security issues
Create security baselines
Module 4: Data and applications
Configure security policies to manage data
Configure security for data infrastructure
Configure encryption for data at rest
Understand application security
Implement security for application lifecycle
Secure applications
Configure and manage Azure Key Vault
Målgruppe for kurset
Audience
To attend this training, students should have at least one year of hands-on experience securing Azure workloads and experience with security controls for workloads on Azure.
Prerequisites
To attend this course, students must have knowledge equal to Microsoft Azure Administrator Associate certification
Eksamen / sertifisering
This course is recommended preparation for exam AZ-500 that leads to the Microsoft Certified: Azure Security Engineer Associate.