SC-5002 - Secure Azure services and workloads with Microsoft Defender for Cloud regulatory compliance controls

To earn this Microsoft Applied Skills credential, learners demonstrate the ability to implement regulatory compliance controls as recommended by the Microsoft cloud security benchmark.

Candidates for this credential should be familiar with Azure infrastructure as a service (IaaS) and platform as a service (PaaS). They should have experience with security capabilities in Azure, along with a working knowledge of regulatory compliance standards.

Duration: 1.0 day

Enquire Now

Start learning today!

Click Hereto customize your Training

Objectives

  • Understand the purpose and benefits of using Azure NSG to filter network traffic.
  • Learn how to create and configure NSGs to enforce access controls for Azure resources.
  • Gain insights into how NSGs can be used to allow or deny specific types of traffic based on source, destination, and port.
  • Understand how to prioritize NSG rules and leverage Azure NSG flow logs for monitoring and troubleshooting.
  • Recognize the role of NSGs in implementing network security best practices in Azure.
  • Understand the importance of a centralized logging solution like Azure Log Analytics workspace for Microsoft Defender for Cloud.
  • Learn how to create and configure a Log Analytics workspace in Azure.
  • Gain insights into collecting and analyzing security data from Microsoft Defender for Cloud within the Log Analytics workspace.
  • Understand how to create custom queries and alerts to proactively detect security threats and incidents.
  • Recognize the benefits of integrating Log Analytics workspace with other Azure services and tools.
  • Understand the features and benefits of Microsoft Defender for Cloud, Microsoft Security Benchmark, Security Recommendations, and Defender for Cloud Secure Score.
  • Learn how to leverage these tools to monitor, protect, and improve the security of cloud environments.
  • Explore the MITRE Attack Matrix to identify common attack techniques and prioritize security efforts.
  • Understand the concept of Brute Force Attacks and the importance of implementing preventive measures.
  • Familiarize yourself with Just in Time Virtual Machine to implement fine-grained access controls for enhanced security.
  • Understand the importance of a centralized log collection and analysis solution in Microsoft Defender for Cloud.
  • Learn how to configure and deploy the Log Analytics agent in Azure.
  • Gain insights into creating and configuring a Log Analytics workspace for Defender for Cloud.
  • Understand how to integrate the Log Analytics workspace with Defender for Cloud to collect and analyze security logs.
  • Recognize the benefits of leveraging centralized log analytics for proactive security monitoring and threat detection.
  • Understand the importance of configuring networking settings for Azure Key Vault in ensuring secure access and communication.
  • Learn how to configure network access control for Azure Key Vault using virtual network service endpoints and private endpoints.
  • Gain insights into configuring firewall rules and virtual network service endpoints to restrict access to Key Vault.
  • Understand the process of configuring private endpoints to securely access Key Vault from virtual networks.
  • Recognize the benefits of properly configuring networking settings for Azure Key Vault in enhancing overall security.
  • Understand the importance of using Azure Private Endpoint to establish secure connections to Azure SQL Server.
  • Learn how to configure and create an Azure Private Endpoint for Azure SQL Server in the Azure portal.
  • Gain insights into the network architecture and components involved in setting up an Azure Private Endpoint.
  • Understand how to validate and test the connection between the Azure Private Endpoint and Azure SQL Server.
  • Recognize the benefits of using Azure Private Endpoint for securing database connections and isolating network traffic.

Content

1. Filter network traffic with a network security group using the Azure portal

In this module, we will focus on filtering network traffic using Network Security Groups (NSGs) in the Azure portal. Learn how to create, configure, and apply NSGs for improved network security.

Click here to know more

2. Create a Log Analytics workspace for Microsoft Defender for Cloud

In this module, you'll discover how to create a Log Analytics workspace in the Azure portal for Microsoft Defender for Cloud, improving data collection and security analysis.

Click here to know more

3. Set up Microsoft Defender for Cloud

In this module, you'll learn how to implement Microsoft Defender for Cloud using the Azure portal, to strengthen security and threat detection in your Azure environment.

Click here to know more

4. Configure and integrate a Log Analytics agent and workspace in Defender for Cloud

This module will guide you to configure and integrate a Log Analytics agent with a workspace in Defender for Cloud via the Azure portal, boosting security analysis.

Click here to know more

5. Configure Azure Key Vault networking settings

In this module, you'll learn to configure Azure Key Vault networking settings via the Azure portal, ensuring secure and controlled access to your stored secrets.

Click here to know more

6. Connect an Azure SQL server using an Azure Private Endpoint using the Azure portal

This module will guide you on securely connecting an Azure SQL server via Azure Private Endpoint in the Azure portal, enhancing data communication security.

Click here to know more

Audience

Security Administrators, Cloud Architects, IT Professionals.

Prerequisites

Basic understanding of Azure security & compliance requirements.

Certification

product-certification

Course Benefits

product-benefits
  • Career growth
  • Broad Career opportunities
  • Worldwide recognition from leaders
  • Up-to Date technical skills
  • Popular Certification Badges

Microsoft Popular Courses

ms-700t00

The Managing Microsoft Teams course is designed for those aspiring to be Microsoft 365 Teams Administrators to deploy, configure and manage Office 365 workloads

az-900t00

This course is a high-level overview of Azure. The course will provide foundational level knowledge of cloud services and how those services are provided with M

sc-900t00

This course provides foundational level knowledge on security, compliance, and identity concepts and related cloud-based Microsoft solutions.

mb-335t00

MB-335T00 is a course code that refers to a specific training program or course offered by Microsoft. Unfortunately, as of my knowledge cutoff in September 2021
Enquire Now
 
 
 
 
3RpD1J
By clicking "Submit", I agree to the Terms Of Use and Privacy Policy