Microsoft Cybersecurity Architect

Microsoft Cybersecurity ArchitectSC-100T00MSMicrosoftMS-SC-100T00A<ul> <li>Design a Zero Trust strategy and architecture</li><li>Evaluate Governance Risk Compliance (GRC) technical strategies and security operations strategies</li><li>Design security for infrastructure</li><li>Design a strategy for data and applications</li></ul><p>Before attending this course, students must have:</p> <ul> <li>Advanced experience and knowledge in identity and access, platform protection, security operations, securing data and securing applications.</li><li>Experience with hybrid and cloud implementations.</li></ul><p>IT professionals with advanced experience and knowledge in a wide range of security engineering areas, including identity and access, platform protection, security operations, securing data, and securing applications. They should also have experience with hybrid and cloud implementations.</p><ul> <li>Build an overall security strategy and architecture</li><li>Design a security operations strategy</li><li>Design an identity security strategy</li><li>Evaluate a regulatory compliance strategy</li><li>Evaluate security posture and recommend technical strategies to manage risk</li><li>Understand architecture best practices and how they are changing with the Cloud</li><li>Design a strategy for securing server and client endpoints</li><li>Design a strategy for securing PaaS, IaaS, and SaaS services</li><li>Specify security requirements for applications</li><li>Design a strategy for securing data</li></ul><h5>Module 1: Build an overall security strategy and architecture</h5><p>Learn how to build an overall security strategy and architecture.</p> <h5>Lessons</h5><ul> <li>Introduction</li><li>Zero Trust overview</li><li>Develop Integration points in an architecture</li><li>Develop security requirements based on business goals</li><li>Translate security requirements into technical capabilities</li><li>Design security for a resiliency strategy</li><li>Design a security strategy for hybrid and multi-tenant environments</li><li>Design technical and governance strategies for traffic filtering and segmentation</li><li>Understand security for protocols</li><li>Exercise: Build an overall security strategy and architecture</li><li>Knowledge check</li><li>Summary</li></ul><p>After completing this module, students will be able to:</p> <ul> <li>Develop Integration points in an architecture</li><li>Develop security requirements based on business goals</li><li>Translate security requirements into technical capabilities</li><li>Design security for a resiliency strategy</li><li>Design security strategy for hybrid and multi-tenant environments</li><li>Design technical and governance strategies for traffic filtering and segmentation</li></ul><h5>Module 2: Design a security operations strategy</h5><p>Learn how to design a security operations strategy.</p> <h5>Lessons</h5><ul> <li>Introduction</li><li>Understand security operations frameworks, processes, and procedures</li><li>Design a logging and auditing security strategy</li><li>Develop security operations for hybrid and multi-cloud environments</li><li>Design a strategy for Security Information and Event Management (SIEM) and Security Orchestration,</li><li>Evaluate security workflows</li><li>Review security strategies for incident management</li><li>Evaluate security operations strategy for sharing technical threat intelligence</li><li>Monitor sources for insights on threats and mitigations</li><li>After completing this module, students will be able to:</li><li>Design a logging and auditing security strategy</li><li>Develop security operations for hybrid and multi-cloud environments.</li><li>Design a strategy for Security Information and Event Management (SIEM) and Security Orchestration, A</li><li>Evaluate security workflows.</li><li>Review security strategies for incident management.</li><li>Evaluate security operations for technical threat intelligence.</li><li>Monitor sources for insights on threats and mitigations.</li></ul><h5>Module 3: Design an identity security strategy</h5><p>Learn how to design an identity security strategy.</p> <h5>Lessons</h5><ul> <li>Introduction</li><li>Secure access to cloud resources</li><li>Recommend an identity store for security</li><li>Recommend secure authentication and security authorization strategies</li><li>Secure conditional access</li><li>Design a strategy for role assignment and delegation</li><li>Define Identity governance for access reviews and entitlement management</li><li>Design a security strategy for privileged role access to infrastructure</li><li>Design a security strategy for privileged activities</li><li>Understand security for protocols</li></ul><p>After completing this module, students will be able to:</p> <ul> <li>Recommend an identity store for security.</li><li>Recommend secure authentication and security authorization strategies.</li><li>Secure conditional access.</li><li>Design a strategy for role assignment and delegation.</li><li>Define Identity governance for access reviews and entitlement management.</li><li>Design a security strategy for privileged role access to infrastructure.</li><li>Design a security strategy for privileged access.</li></ul><h5>Module 4: Evaluate a regulatory compliance strategy</h5><p>Learn how to evaluate a regulatory compliance strategy.</p> <h5>Lessons</h5><ul> <li>Introduction</li><li>Interpret compliance requirements and their technical capabilities</li><li>Evaluate infrastructure compliance by using Microsoft Defender for Cloud</li><li>Interpret compliance scores and recommend actions to resolve issues or improve security</li><li>Design and validate implementation of Azure Policy</li><li>Design for data residency Requirements</li><li>Translate privacy requirements into requirements for security solutions</li><li>After completing this module, students will be able to:</li><li>Interpret compliance requirements and their technical capabilities</li><li>Evaluate infrastructure compliance by using Microsoft Defender for Cloud</li><li>Interpret compliance scores and recommend actions to resolve issues or improve security</li><li>Design and validate implementation of Azure Policy</li><li>Design for data residency requirements</li><li>Translate privacy requirements into requirements for security solutions</li></ul><h5>Module 5: Evaluate security posture and recommend technical strategies to manage risk</h5><p>Learn how to evaluate security posture and recommend technical strategies to manage risk.</p> <h5>Lessons</h5><ul> <li>Introduction</li><li>Evaluate security postures by using benchmarks</li><li>Evaluate security postures by using Microsoft Defender for Cloud</li><li>Evaluate security postures by using Secure Scores</li><li>Evaluate security hygiene of Cloud Workloads</li><li>Design security for an Azure Landing Zone</li><li>Interpret technical threat intelligence and recommend risk mitigations</li><li>Recommend security capabilities or controls to mitigate identified risks</li></ul><p>After completing this module, students will be able to:</p> <ul> <li>Evaluate security postures by using benchmarks</li><li>Evaluate security postures by using Microsoft Defender for Cloud</li><li>Evaluate security postures by using Secure Scores</li><li>Evaluate security hygiene of Cloud Workloads</li><li>Design security for an Azure Landing Zone</li><li>Interpret technical threat intelligence and recommend risk mitigations</li><li>Recommend security capabilities or controls to mitigate identified risks</li></ul><h5>Module 6: Understand architecture best practices and how they are changing with the Cloud</h5><p>Learn about architecture best practices and how they are changing with the Cloud.</p> <h5>Lessons</h5><ul> <li>Introduction</li><li>Plan and implement a security strategy across teams</li><li>Establish a strategy and process for proactive and continuous evolution of a security strategy</li><li>Understand network protocols and best practices for network segmentation and traffic filtering</li></ul><p>After completing this module, students will be able to:</p> <ul> <li>Describe best practices for network segmentation and traffic filtering.</li><li>Plan and implement a security strategy across teams.</li><li>Establish a strategy and process for proactive and continuous evaluation of security strategy.</li></ul><h5>Module 7: Design a strategy for securing server and client endpoints</h5><p>Learn how to design a strategy for securing server and client endpoints.</p> <h5>Lessons</h5><ul> <li>Introduction</li><li>Specify security baselines for server and client endpoints</li><li>Specify security requirements for servers</li><li>Specify security requirements for mobile devices and clients</li><li>Specify requirements for securing Active Directory Domain Services</li><li>Design a strategy to manage secrets, keys, and certificates</li><li>Design a strategy for secure remote access</li><li>Understand security operations frameworks, processes, and procedures</li><li>Understand deep forensics procedures by resource type</li></ul><p>After completing this module, students will be able to:</p> <ul> <li>Specify security baselines for server and client endpoints</li><li>Specify security requirements for servers</li><li>Specify security requirements for mobile devices and clients</li><li>Specify requirements for securing Active Directory Domain Services</li><li>Design a strategy to manage secrets, keys, and certificates</li><li>Design a strategy for secure remote access</li><li>Understand security operations frameworks, processes, and procedures</li><li>Understand deep forensics procedures by resource type</li></ul><h5>Module 8: Design a strategy for securing PaaS, IaaS, and SaaS services</h5><p>Learn how to design a strategy for securing PaaS, IaaS, and SaaS services.</p> <h5>Lessons</h5><ul> <li>Introduction</li><li>Specify security baselines for PaaS services</li><li>Specify security baselines for IaaS services</li><li>Specify security baselines for SaaS services</li><li>Specify security requirements for IoT workloads</li><li>Specify security requirements for data workloads</li><li>Specify security requirements for web workloads</li><li>Specify security requirements for storage workloads</li><li>Specify security requirements for containers</li><li>Specify security requirements for container orchestration</li></ul><p>After completing this module, students will be able to:</p> <ul> <li>Specify security baselines for PaaS, SaaS and IaaS services</li><li>Specify security requirements for IoT, data, storage, and web workloads</li><li>Specify security requirements for containers and container orchestration</li></ul><h5>Module 9: Specify security requirements for applications</h5><p>Learn how to specify security requirements for applications.</p> <h5>Lessons</h5><ul> <li>Introduction</li><li>Understand application threat modeling</li><li>Specify priorities for mitigating threats to applications</li><li>Specify a security standard for onboarding a new application</li><li>Specify a security strategy for applications and APIs</li></ul><p>After completing this module, students will be able to:</p> <ul> <li>Specify priorities for mitigating threats to applications</li><li>Specify a security standard for onboarding a new application</li><li>Specify a security strategy for applications and APIs</li></ul><h5>Module 10: Design a strategy for securing data</h5><p>Learn how to design a strategy for securing data.</p> <h5>Lessons</h5><ul> <li>Introduction</li><li>Prioritize mitigating threats to data</li><li>Design a strategy to identify and protect sensitive data</li><li>Specify an encryption standard for data at rest and in motion</li></ul><p>After completing this module, students will be able to:</p> <ul> <li>Prioritize mitigating threats to data</li><li>Design a strategy to identify and protect sensitive data</li><li>Specify an encryption standard for data at rest and in motion</li></ul>- Design a Zero Trust strategy and architecture - Evaluate Governance Risk Compliance (GRC) technical strategies and security operations strategies - Design security for infrastructure - Design a strategy for data and applicationsBefore attending this course, students must have: - Advanced experience and knowledge in identity and access, platform protection, security operations, securing data and securing applications. - Experience with hybrid and cloud implementations.IT professionals with advanced experience and knowledge in a wide range of security engineering areas, including identity and access, platform protection, security operations, securing data, and securing applications. They should also have experience with hybrid and cloud implementations.- Build an overall security strategy and architecture - Design a security operations strategy - Design an identity security strategy - Evaluate a regulatory compliance strategy - Evaluate security posture and recommend technical strategies to manage risk - Understand architecture best practices and how they are changing with the Cloud - Design a strategy for securing server and client endpoints - Design a strategy for securing PaaS, IaaS, and SaaS services - Specify security requirements for applications - Design a strategy for securing dataModule 1: Build an overall security strategy and architecture Learn how to build an overall security strategy and architecture. Lessons - Introduction - Zero Trust overview - Develop Integration points in an architecture - Develop security requirements based on business goals - Translate security requirements into technical capabilities - Design security for a resiliency strategy - Design a security strategy for hybrid and multi-tenant environments - Design technical and governance strategies for traffic filtering and segmentation - Understand security for protocols - Exercise: Build an overall security strategy and architecture - Knowledge check - Summary After completing this module, students will be able to: - Develop Integration points in an architecture - Develop security requirements based on business goals - Translate security requirements into technical capabilities - Design security for a resiliency strategy - Design security strategy for hybrid and multi-tenant environments - Design technical and governance strategies for traffic filtering and segmentation Module 2: Design a security operations strategy Learn how to design a security operations strategy. Lessons - Introduction - Understand security operations frameworks, processes, and procedures - Design a logging and auditing security strategy - Develop security operations for hybrid and multi-cloud environments - Design a strategy for Security Information and Event Management (SIEM) and Security Orchestration, - Evaluate security workflows - Review security strategies for incident management - Evaluate security operations strategy for sharing technical threat intelligence - Monitor sources for insights on threats and mitigations - After completing this module, students will be able to: - Design a logging and auditing security strategy - Develop security operations for hybrid and multi-cloud environments. - Design a strategy for Security Information and Event Management (SIEM) and Security Orchestration, A - Evaluate security workflows. - Review security strategies for incident management. - Evaluate security operations for technical threat intelligence. - Monitor sources for insights on threats and mitigations. Module 3: Design an identity security strategy Learn how to design an identity security strategy. Lessons - Introduction - Secure access to cloud resources - Recommend an identity store for security - Recommend secure authentication and security authorization strategies - Secure conditional access - Design a strategy for role assignment and delegation - Define Identity governance for access reviews and entitlement management - Design a security strategy for privileged role access to infrastructure - Design a security strategy for privileged activities - Understand security for protocols After completing this module, students will be able to: - Recommend an identity store for security. - Recommend secure authentication and security authorization strategies. - Secure conditional access. - Design a strategy for role assignment and delegation. - Define Identity governance for access reviews and entitlement management. - Design a security strategy for privileged role access to infrastructure. - Design a security strategy for privileged access. Module 4: Evaluate a regulatory compliance strategy Learn how to evaluate a regulatory compliance strategy. Lessons - Introduction - Interpret compliance requirements and their technical capabilities - Evaluate infrastructure compliance by using Microsoft Defender for Cloud - Interpret compliance scores and recommend actions to resolve issues or improve security - Design and validate implementation of Azure Policy - Design for data residency Requirements - Translate privacy requirements into requirements for security solutions - After completing this module, students will be able to: - Interpret compliance requirements and their technical capabilities - Evaluate infrastructure compliance by using Microsoft Defender for Cloud - Interpret compliance scores and recommend actions to resolve issues or improve security - Design and validate implementation of Azure Policy - Design for data residency requirements - Translate privacy requirements into requirements for security solutions Module 5: Evaluate security posture and recommend technical strategies to manage risk Learn how to evaluate security posture and recommend technical strategies to manage risk. Lessons - Introduction - Evaluate security postures by using benchmarks - Evaluate security postures by using Microsoft Defender for Cloud - Evaluate security postures by using Secure Scores - Evaluate security hygiene of Cloud Workloads - Design security for an Azure Landing Zone - Interpret technical threat intelligence and recommend risk mitigations - Recommend security capabilities or controls to mitigate identified risks After completing this module, students will be able to: - Evaluate security postures by using benchmarks - Evaluate security postures by using Microsoft Defender for Cloud - Evaluate security postures by using Secure Scores - Evaluate security hygiene of Cloud Workloads - Design security for an Azure Landing Zone - Interpret technical threat intelligence and recommend risk mitigations - Recommend security capabilities or controls to mitigate identified risks Module 6: Understand architecture best practices and how they are changing with the Cloud Learn about architecture best practices and how they are changing with the Cloud. Lessons - Introduction - Plan and implement a security strategy across teams - Establish a strategy and process for proactive and continuous evolution of a security strategy - Understand network protocols and best practices for network segmentation and traffic filtering After completing this module, students will be able to: - Describe best practices for network segmentation and traffic filtering. - Plan and implement a security strategy across teams. - Establish a strategy and process for proactive and continuous evaluation of security strategy. Module 7: Design a strategy for securing server and client endpoints Learn how to design a strategy for securing server and client endpoints. Lessons - Introduction - Specify security baselines for server and client endpoints - Specify security requirements for servers - Specify security requirements for mobile devices and clients - Specify requirements for securing Active Directory Domain Services - Design a strategy to manage secrets, keys, and certificates - Design a strategy for secure remote access - Understand security operations frameworks, processes, and procedures - Understand deep forensics procedures by resource type After completing this module, students will be able to: - Specify security baselines for server and client endpoints - Specify security requirements for servers - Specify security requirements for mobile devices and clients - Specify requirements for securing Active Directory Domain Services - Design a strategy to manage secrets, keys, and certificates - Design a strategy for secure remote access - Understand security operations frameworks, processes, and procedures - Understand deep forensics procedures by resource type Module 8: Design a strategy for securing PaaS, IaaS, and SaaS services Learn how to design a strategy for securing PaaS, IaaS, and SaaS services. Lessons - Introduction - Specify security baselines for PaaS services - Specify security baselines for IaaS services - Specify security baselines for SaaS services - Specify security requirements for IoT workloads - Specify security requirements for data workloads - Specify security requirements for web workloads - Specify security requirements for storage workloads - Specify security requirements for containers - Specify security requirements for container orchestration After completing this module, students will be able to: - Specify security baselines for PaaS, SaaS and IaaS services - Specify security requirements for IoT, data, storage, and web workloads - Specify security requirements for containers and container orchestration Module 9: Specify security requirements for applications Learn how to specify security requirements for applications. Lessons - Introduction - Understand application threat modeling - Specify priorities for mitigating threats to applications - Specify a security standard for onboarding a new application - Specify a security strategy for applications and APIs After completing this module, students will be able to: - Specify priorities for mitigating threats to applications - Specify a security standard for onboarding a new application - Specify a security strategy for applications and APIs Module 10: Design a strategy for securing data Learn how to design a strategy for securing data. Lessons - Introduction - Prioritize mitigating threats to data - Design a strategy to identify and protect sensitive data - Specify an encryption standard for data at rest and in motion After completing this module, students will be able to: - Prioritize mitigating threats to data - Design a strategy to identify and protect sensitive data - Specify an encryption standard for data at rest and in motion4 dias1690.002690.002690.009330.001000.001000.001000.001919.001499.002450.001995.001995.003600.002690.002595.002595.001200.002610.003380.002690.002850.00