Paths
Microsoft Azure Security Technologies (AZ-500)
This learning path is intended to help learners start their preparation to take the Microsoft Azure Security Technologies (AZ-500) certification exam. Microsoft Azure Security... Read more
What you will learn
- Manage identity and access
- Implement platform protection
- Manage security operations
- Secure data and applications
Pre-requisites
According to Microsoft, candidates for the AZ-500 Microsoft Azure Security Technologies (AZ-500) exam should be familiar with scripting and automation, and should have a deep understanding of networking and virtualization. Further, a candidate should also have a strong familiarity with cloud capabilities, Azure products and services, and other Microsoft products and services.
Manage Identity and Access in Microsoft Azure
This section of the path covers the objectives found in the Manage Identity and Access section of the exam guide, including:
- Manage Azure Active Directory identities
- Configure secure access by using Azure AD
- Manage application access
- Manage access control
Microsoft Azure Security Engineer: Manage Azure Active Directory Identities
1h 40m
Description
The Azure Active Directory (Azure AD) tenant is your home base for authentication, authorization, and accounting in your Microsoft Azure environment. In this course, Microsoft Azure Security Engineer: Manage Azure Active Directory Identities, you’ll learn to manage your Azure identities and keep them secure. First, you’ll explore Azure user and group management. Next, you’ll discover the inner details of Azure AD authentication. Finally, you’ll learn how to transfer Azure resources between resource groups, subscriptions, and Azure AD tenants. When you’re finished with this course, you’ll have the skills and knowledge of Azure AD identity needed to keep your environment secure. You'll also be well on your way to passing Exam AZ-500, Microsoft Azure Security Technologies
Table of contents
- Manage Azure AD Users and Groups
- Manage Azure AD Authentication
- Transfer Microsoft Azure Resources
Microsoft Azure Security Engineer: Configure Secure Access Using Azure AD
56m
Description
Least-privilege security is hard work, especially in a cloud environment you don’t own. In this course, Microsoft Azure Security Engineer: Configure Secure Access Using Azure AD, you’ll learn how to secure authentication and authorization for your Azure subscriptions. First, you’ll explore role-based access control (RBAC) configuration with Azure AD Privileged Identity Management (PIM). Next, you’ll discover how to conduct access reviews alone or with your teammates. Finally, you’ll learn how to implement Azure AD Identity Protection and Conditional Access to shape your users’ authentication environment for cloud applications.. When you’re finished with this course, you’ll have the skills and knowledge of least-privilege security needed to keep your Azure users and resources secure.
Table of contents
- Monitor Privileged Access in Microsoft Azure
- Conduct Access Reviews in Microsoft Azure
- Implement Conditional Access and Azure AD Identity Protection
Microsoft Azure Security Engineer: Manage Application Access
42m
Description
You need to help your developers secure their Azure AD-protected apps. In this course, Microsoft Azure Security Engineer: Manage Application Access, you’ll learn to protect Azure AD app registrations and their APIs. First, you’ll explore the app registration process. Next, you’ll discover how to connect to remote APIs. Finally, you’ll learn how to expose your own Azure AD-hosted API to be consumed by yet other apps. When you’re finished with this course, you’ll have the skills and knowledge of Azure application security needed to secure your Azure AD app infrastructure. You'll also be well on your way to pass Microsoft Exam AZ-500, Microsoft Azure Security Technologies.
Table of contents
- Configure App Registrations in Microsoft Azure
- Manage API Access to Microsoft Azure Resources
Microsoft Azure Security Engineer: Manage Access Control
45m
Description
Your business’ success in Azure relies on least-privilege authorization for users and service principals. In this course, Microsoft Azure Security Engineer: Manage Access Control, you’ll learn to apply role-based access control (RBAC) to your Azure AD tenant and your subscription resources. First, you’ll explore how Azure implements authentication and authorization. Next, you’ll discover how to use the built-in RBAC roles in Azure. Finally, you’ll learn how to define custom RBAC roles. When you’re finished with this course, you’ll have the skills and knowledge of least-privilege authorization needed to secure your Azure environment. This course covers some of the objectives from Exam AZ-500, Microsoft Azure Security Technologies.
Table of contents
- Implement RBAC in Microsoft Azure
- Define Custom RBAC Roles in Microsoft Azure
Exam Alert: Manage Identity and Access in Microsoft Azure
17m
Description
Knowing what content to study is as important as knowing what content to ignore in your Microsoft certification exam preparation. In this course, Exam Alert: Manage Identity and Access in Microsoft Azure, you’ll learn to sharpen your certification study strategy. First, you’ll explore what Azure security content is mostly likely to appear on your AZ-500 exam. Next, you’ll discover the content areas you can safely ignore. Finally, you’ll learn how to gain the conceptual knowledge, hands-on skills, and computer-based exam techniques to clear your AZ-500 exam with confidence. When you’re finished with this course, you’ll have the skills and knowledge of Azure identity and access needed to answer related questions correctly on exam AZ-500.
Table of contents
- Azure Security “Need to Know” Information
Implement Platform Protection in Microsoft Azure
This section of the path covers the objectives found in the Implement Platform Protection section of the exam guide, including:
- Implement advanced network security
- Configure advanced security for compute
Coming Soon
Microsoft Azure Security Engineer: Implement Advanced Network Security
Coming Soon
Microsoft Azure Security Engineer: Configure Advanced Security for Compute
1h 41m
Description
In today’s cloud-first world, you are faced with an ever-growing number of threats that can be targeted against your Azure compute services. In this course, Microsoft Azure Security Engineer: Configure Advanced Security for Compute, you’ll learn the key security services available in Azure to secure your compute workloads with an emphasis on those services relevant for the AZ-500 exam. First, you’ll explore update management of Azure virtual machines. Next, you’ll discover the power of the Endpoint Protection service and how it protects us from viruses and malware. Finally, you’ll learn how to secure your container workloads running in Azure. When you’re finished with this course, you’ll have the skills and knowledge of Advanced Compute Security needed to be a productive member of a compute security team and have the knowledge required to attempt compute security questions on the AZ-500 certification exam.
Table of contents
- Configuring Monitoring and Updates for Virtual Machines
- Configuring Endpoint Protection and Vulnerability Management for Virtual Machines
- Configuring Encryption in Azure
- Configuring Authentication and Security for Azure App Services
- Configuring Authentication and Security for Azure Containers
- Configuring Security for Azure Kubernetes Service
Exam Alert: Implement Platform Protection in Microsoft Azure
31m
Description
It can be a real challenge to identify key exam topics. In this course, Exam Alert: Implement Platform Protection in Microsoft Azure, you’ll learn which Azure features are key to exam success. First, you’ll explore advanced networking security features. Next, you’ll discover key exam features related to compute security. Finally, you’ll learn how to apply the features you have reviewed to exam questions. When you’re finished with this course, you’ll have the skills and knowledge of platform protection needed to help you successfully answer platform protection questions in the AZ-500 exam.
Table of contents
- Understanding Platform Protection Content on the AZ-500 Exam
- Understanding Platform Protection Questions on the AZ-500 Exam
Manage Security Operations in Microsoft Azure
This section of the path covers the objectives found in the Manage Security Operations section of the exam guide, including:
- Monitor security by using Azure Monitor
- Monitor security by using Azure Security Center
- Monitor security by using Azure Sentinel
- Configure security policies
Microsoft Azure Security Engineer: Monitor Security Using Azure Monitor
51m
Description
Azure Monitor is a comprehensive solution for collecting, analyzing, and acting on telemetry from your cloud and on-premises environment. In this course, monitor security using azure monitor, you’ll learn to use the various facilities of azure monitor First, you’ll explore how to set up alerts on VMs and explore the recorded alerts. Next, you’ll discover how to set up diagnostic logging. Finally, you’ll learn how to manage costs using log retention. When you’re finished with this course, you’ll have the skills and knowledge of Azure monitor, needed to secure your infrastructure and applications.
Table of contents
- Manage Alerts
- Configure Diagnostic Logging
- Configure Log Retention
Microsoft Azure Security Engineer: Monitor Security Using Azure Security Center
44m
Description
Azure Security Center helps to give you a dashboard view of your security posture in Microsoft Azure and beyond. In this course, Microsoft Azure Security Engineer: Monitor Security Using Azure Security Center, you’ll learn to use Security Center to monitor and manage resources in Azure. First, you’ll explore configuring security and compliance policies in Security Center. Next, you’ll discover how to enable Just in Time VM Access for Azure VMs. Finally, you’ll learn how to configure vulnerability scans and review the results. When you’re finished with this course, you’ll have the skills and knowledge of Azure Security Center needed to take and pass the AZ-500 exam.
Table of contents
- Managing Policies in Azure Security Center
- Managing Compliance in Azure Security Center
- Configuring Just in Time VM Access
- Evaluating Vulnerability Scans
Microsoft Azure Security Engineer: Monitor Security Using Azure Sentinel
48m
Description
Azure Sentinel is a critical part of the Azure security infrastructure. In this course, Microsoft Azure Security Engineer: Monitor Security Using Azure Sentinel, you’ll learn the features and capabilities of Azure sentinel. First, you’ll explore how to set up data sources and alerts. Next, you’ll discover exploring threats using those alerts. Finally, you’ll learn how to automate and respond to common threats. When you’re finished with this course, you’ll have the skills and knowledge of Azure sentinel needed to secure your infrastructure and applications.
Table of contents
- Explore Data Sources
- Evaluate Results
- Use Automation
Microsoft Azure Security Engineer: Configure Security Policies
1h 33m
Description
Applying consistent security settings across your Azure environment is a challenge for security engineers. In this course, Microsoft Azure Security Engineer: Configure Security Policies, you’ll learn to use Azure Policy to achieve your security goals. First, you’ll explore applying security settings through Azure Policy. Next, you’ll discover how Azure Blueprints use Policies and RBAC to automate security for new deployment. Finally, you’ll learn how to create Playbooks on Azure Sentinel to automate your response to security incidents. When you’re finished with this course, you’ll have the skills and knowledge of Azure Policies needed to take and pass the AZ-500 exam.
Table of contents
- Configuring Azure Policy for Security
- Configuring Azure Blueprints for Security
- Using Playbooks in Azure Sentinel
Coming Soon
Exam Alert: Manage Security Operations in Microsoft Azure
Coming Soon
Secure Data and Applications in Microsoft Azure
This section of the path covers the objectives found in the Secure Data and Applications section of the exam guide, including:
- Configure security for storage
- Configure security for databases
- Configure and manage Key Vault
Microsoft Azure Security Engineer: Configure Security for Storage
1h 8m
Description
Azure storage is one of the most critical parts of Azure. Applications use it to store data, and it is very important to be able to manage security and integrity of your data. In this course, Microsoft Azure Security Engineer: Configure Security for Storage, you’ll learn the various options of managing access, securing access, and encrypting azure storage. First, you’ll explore the classical methods, which are keys and SAS, along with key vault. Next, you’ll discover the value azure ad adds into the picture. Finally, you’ll learn how to encrypt data in azure storage. When you’re finished with this course, you’ll have the skills and knowledge to configure security for Azure storage.
Table of contents
- Configuring Azure Storage Security
- Authenticate to Azure Storage using Azure AD
- Encrypt Azure Storage
Microsoft Azure Security Engineer: Configure Security for Databases
1h 16m
Description
The importance of securing and auditing where you store data cannot be overstated. In this course, Microsoft Azure Security Engineer: Configure Security for Databases, you’ll learn how to authenticate, secure, audit, and use advanced threat protection with SQL products. First, you’ll explore authentication basics, with Azure AD or without. Next, you’ll discover auditing and encrypting of SQL Data. Finally, you’ll learn how to use products such as azure defender and ATP with SQL Server. When you’re finished with this course, you’ll have the skills and knowledge of configuring security needed to secure and manage your Azure SQL products.
Table of contents
- Authenticating to Azure SQL
- Auditing SQL Server
- Encrypting SQL
- Using SQL with Advanced Threat Protection (ATP)
Microsoft Azure Security Engineer: Configure and Manage Key Vault
1h 21m
Description
Secrets, keys, and certificates are some of the most sensitive data in your organization. In this course, Configure and Manage Key Vault, you’ll learn to utilize Azure Key Vault as a security engineer. First, you’ll explore managing permissions to Key Vault using role-based access control. Next, you’ll discover how to use access policies to control Key Vault resource access. Finally, you’ll learn how to manage Key Vault resources and protect them from accidental deletion. When you’re finished with this course, you’ll have the skills and knowledge of Azure Key Vault needed to take and pass the AZ-500 exam.
Table of contents
- Managing Access to Key Vault
- Using Key Vault Access Policies
- Managing Key Vault Objects
- Using Key Vault Objects