AZ-500T00 – Microsoft Azure Security Technologies
This Course Includes
Videos & Lectures
Quizzes & Assessments
Mobile access
Certificate of Completion
Introduction
This course provides IT Security Professionals with the knowledge and skills needed to implement security controls, maintain an organization’s security posture, and identify and remediate security vulnerabilities. This course includes security for identity and access, platform protection, data and applications, and security operations.
Audience Profile
This course is for Azure Security Engineers who are planning to take the associated certification exam, or who are performing security tasks in their day-to-day job. This course would also be helpful to an engineer that wants to specialize in providing security for Azure-based digital platforms and play an integral role in protecting an organization’s data.
Prerequisites
Successful learners will have prior knowledge and understanding of:
- Security best practices and industry security requirements such as defense in depth, least privileged access, role-based access control, multi-factor authentication, shared responsibility, and zero trust model.
- Be familiar with security protocols such as Virtual Private Networks (VPN), Internet Security Protocol (IPSec), Secure Socket Layer (SSL), disk and data encryption methods.
- Have some experience deploying Azure workloads. This course does not cover the basics of Azure administration, instead the course content builds on that knowledge by adding security specific information.
- Have experience with Windows and Linux operating systems and scripting languages.
Course labs may use PowerShell and the CLI.
Module 1: Manage security controls for identity and access
This module focuses on effectively managing security controls in Microsoft Entra ID by securing identities, authentication, and authorization to protect users, groups, and external identities against threats while ensuring secure and seamless access to resources.
Learning objectives
By the end of this module, participants will be able to:
- Secure user identities in Microsoft Entra ID by implementing strong authentication and access management controls.
- Protect groups and access management by enforcing security measures to prevent unauthorized changes or misuse.
- Manage external identities securely by defining policies that ensure confidentiality, integrity, and proper access control.
- Implement Microsoft Entra ID Protection to detect, investigate, and mitigate identity-related security threats.
- Apply Conditional Access policies to enforce security controls based on user behavior, device compliance, and contextual risks.
Module 2: Manage Microsoft Entra application access
This module covers managing application access in Microsoft Entra ID, including controlling enterprise app access, managing app registrations and permissions, utilizing service principals, and configuring the Microsoft Entra Application Proxy for secure access.
Learning objectives
By the end of this module, participants are able to:
- Manage enterprise application access in Microsoft Entra ID, including OAuth permission grants for access control.
- Govern application integration with identity platforms through Microsoft Entra ID app registrations.
- Configure app registration permission scopes for appropriate resource access levels.
- Manage app registration consent and use service principals and managed identities for automated management and enhanced security.
Module 3: Plan and implement security for virtual networks
This module is designed to provide administrators with the knowledge and skills needed to plan and implement robust security measures for Azure virtual networks, ensuring the confidentiality, integrity, and availability of network resources.
Learning objectives
- Implement security measures for Azure virtual networks to safeguard data and resources.
- Utilize NSGs and ASGs for network traffic security, and manage UDRs for optimal traffic routing.
- Establish secure network connectivity through Virtual Network peering, VPN gateways, and Virtual WAN.
- Enhance network security with VPN configurations, ExpressRoute encryption, PaaS firewall settings, and Network Watcher monitoring.
Module 4: Plan and implement security for private access to Azure resources
This module focuses on equipping administrators with the knowledge and skills required to plan and implement robust security measures for private access to Azure resources, safeguarding sensitive data and enhancing network integrity.
Learning objectives
- Develop security strategies for private access to Azure resources to protect sensitive data.
- Utilize virtual network Service Endpoints and Private Endpoints for secure Azure service access.
- Manage Private Link services for secure resource exposure and integrate Azure App Service and Functions with virtual networks.
- Configure network security for App Service Environment and Azure SQL Managed Instance to safeguard web applications and databases.
Module 5: Plan and implement security for public access to Azure resources
This module empowers admins to plan and implement strong security for Azure resources, ensuring app/service confidentiality, integrity, and availability.
Learning objectives
- Develop strategies for secure public access to Azure resources, preventing unauthorized access and breaches.
- Implement TLS for Azure App Service and API Management to encrypt data in transit.
- Protect network traffic with Azure Firewall and Application Gateway for optimized web application security and delivery.
- Enhance web app performance with Azure Front Door and CDN, and deploy WAF and DDoS Protection for robust defense against attacks.
Module 6: Plan and implement advanced security for compute
This module is designed to provide administrators with the knowledge and skills needed to plan and implement advanced security measures for Azure compute resources, safeguarding applications and data against evolving security threats.
Learning objectives
By the end of this module, participants will be able to:
- Enhance Azure compute resources’ security against vulnerabilities and attacks with advanced measures.
- Secure remote access via Azure Bastion and JIT VM access, and implement network isolation for AKS.
- Strengthen AKS clusters’ security, monitor Azure Container Instances and Apps, and manage access to Azure Container Registry.
- Implement disk encryption methods like ADE and manage API access securely in Azure API Management.
Module 7: Plan and implement security for storage
This module is designed to provide administrators with the knowledge and skills required to plan and implement comprehensive security measures for Azure storage resources, safeguarding data integrity, confidentiality, and availability.
Learning objectives
By the end of this module, participants will be able to:
- Develop security strategies for Azure storage resources, ensuring data protection during rest and transit.
- Manage storage account access with effective access control and secure key lifecycle management.
- Tailor access methods for Azure Files, Blob Storage, Tables, and Queues to specific use cases.
- Strengthen data security with soft delete, backups, versioning, immutable storage, BYOK, and double encryption.
Module 8: Plan and implement security for Azure SQL Database and Azure SQL Managed Instance
This module is designed to empower administrators with the knowledge and skills needed to plan and implement robust security measures for Azure SQL Database and Azure SQL Managed Instance, ensuring data protection and regulatory compliance.
Learning objectives
By the end of this module, participants will be able to:
- Implement security for Azure SQL Managed Instance to safeguard sensitive data.
- Use Microsoft Enterprise Identity for database authentication and conduct database auditing for compliance.
- Utilize Microsoft Purview for data governance and classification to protect sensitive information.
- Apply dynamic masking and Transparent Database Encryption, and recommend Always Encrypted for client-side data protection.
Module 9: Implement and manage enforcement of cloud governance policies
This module focuses on enabling administrators to effectively plan, implement, and manage security governance in Azure, ensuring compliance with organizational policies and best practices.
Learning objectives
By the end of this module, participants will be able to:
- Enforce compliance using Azure Policy to create and manage security policies.
- Streamline secure infrastructure deployment with Azure Blueprint.
- Utilize landing zones for consistent Azure security and manage sensitive data with Azure Key Vault.
- Enhance key security with HSM recommendations, effective access control, and regular key rotation and backup processes.
Module 10: Manage security posture by using Microsoft Defender for Cloud
This module teaches administrators to manage and improve cloud security using Microsoft Defender for Cloud, focusing on proactive risk identification and remediation.
Learning objectives
By the end of this module, participants will be able to:
- Utilize Microsoft Defender for Cloud Secure Score and Inventory to identify and mitigate security risks, enhancing overall security posture.
- Assess and align with security frameworks using Microsoft Defender for Cloud to ensure adherence to security standards and best practices.
- Integrate specific industry and regulatory standards into Microsoft Defender for Cloud for tailored compliance.
- Connect hybrid and multicloud environments to Microsoft Defender for Cloud for centralized security management, and monitor external assets to safeguard against external threats.
Module 11: Configure and manage threat protection by using Microsoft Defender for Cloud
This module focuses on the essential techniques for configuring and managing threat protection exclusively with Microsoft Defender for Cloud, empowering cybersecurity specialists to strengthen the security posture of their cloud environments.
Learning objectives
By the end of this module, participants will be able to:
- Master the configuration of Microsoft Defender for Cloud to effectively monitor and protect cloud resources.
- Implement advanced threat detection strategies using Microsoft Defender for Cloud’s built-in capabilities.
- Utilize Microsoft Defender for Cloud’s threat intelligence to proactively identify and mitigate security risks.
- Configure and fine-tuning security policies within Microsoft Defender for Cloud to align with organizational security requirements.
- Develop expertise in incident response and remediation using Microsoft Defender for Cloud’s integrated tools and features.
Module 12: Configure and manage security monitoring and automation solutions
This module teaches how to set up and manage security tools with Azure Monitor and Microsoft Sentinel. It helps organizations quickly find and deal with security issues in their cloud setup.
Learning objectives
By the end of this module, participants will be able to:
- Use Azure Monitor for effective security event monitoring in cloud environments.
- Implement data connectors in Microsoft Sentinel for comprehensive security data collection.
- Develop customized analytics rules in Microsoft Sentinel for targeted threat detection.
- Assess and automate responses to security incidents in Microsoft Sentinel to enhance workflow efficiency.
Requirements
- English Knowledge
- Understands Basics
Price:
$
Code:
AZ-500T00
Duration:
Days
Location:
Virtual Classroom
Schedule:
Coming Soon
Send us your question now
You can reach us through our contact form, by email, or by phone. We will get back to you within 1 business day.
Pro Trainers Hub empowers instructors with resources, support, and a platform to share knowledge.
Company Info
Courses
Contact Info
- No 15, Crestwood 1,Thalawatugoda 10116
- +94 77 276 6824
- info@protrainershub.com
© 2025 All Rights Reserved. | Reg : PV00328463