Microsoft Security, Compliance, and Identity Fundamentals SC-900

Course Certification

This course helps you prepare to take the:
Exam SC-900 Microsoft Security, Compliance, and Identity Fundamentals;

Course Outline

• Describe the shared responsibility model
• Describe defense-in-depth
• Describe the Zero Trust model
• Describe encryption and hashing
• Describe Governance, Risk, and Compliance (GRC) concepts

• Define identity as the primary security perimeter
• Define authentication
• Define authorization
• Describe identity providers
• Describe the concept of directory services and Active Directory
• Describe the concept of federation

• Describe Microsoft Enter ID
• Describe types of identities
• Describe hybrid identity

• Describe the authentication methods
• Describe multi-factor authentication (MFA)
• Describe password protection and management capabilities

• Describe Conditional Access
• Describe Microsoft Entra roles and role-based access control (RBAC)

• Describe Microsoft Entra ID Governance
• Describe access reviews
• Describe the capabilities of Microsoft Entra Privileged Identity Management
• Describe Entra ID Protection
• Describe Microsoft Entra Permissions Management

• Describe Azure distributed denial-of-service (DDoS) Protection
• Describe Azure Firewall
• Describe Web Application Firewall (WAF)
• Describe network segmentation with Azure virtual networks
• Describe network security groups (NSGs)
• Describe Azure Bastion
• Describe Azure Key Vault

• Describe Microsoft Defender for Cloud
• Describe Cloud Security Posture Management (CSPM)
• Describe how security policies and initiatives improve the cloud security posture
• Describe enhanced security features provided by cloud workload protection

• Define the concepts of security information and event management (SIEM) and security orchestration automated response (SOAR)
• Describe threat detection and mitigation capabilities in Microsoft Sentinel

• Describe Microsoft 365 Defender services
• Describe Microsoft Defender for Office 365
• Describe Microsoft Defender for Endpoint
• Describe Microsoft Defender for Cloud Apps
• Describe Microsoft Defender for Identity
• Describe Microsoft Defender Vulnerability Management
• Describe Microsoft Defender Threat Intelligence (Defender TI)
• Describe the Microsoft 365 Defender portal

• Describe the Service Trust Portal offerings
• Describe the privacy principles of Microsoft
• Describe Microsoft Priva

• Describe the Microsoft Purview compliance portal
• Describe Compliance Manager
• Describe the uses and benefits of compliance score

• Describe the data classification capabilities
• Describe the benefits of Content explorer and Activity explorer
• Describe sensitivity labels and sensitivity label policies
• Describe data loss prevention (DLP)
• Describe records management
• Describe retention policies, retention labels, and retention label policies
• Describe unified data governance solutions in Microsoft Purview

• Describe insider risk management
• Describe eDiscovery solutions in Microsoft Purview
• Describe audit solutions in Microsoft Purview

Course Mode

Instructor-Led Remote Live Classroom Training;

Trainers

Trainers are authorized Instructors in Microsoft and certified in other IT technologies, with years of hands-on experience in the industry and in Training.

Lab Topology

For all types of delivery, the participant can access the equipment and actual systems in our laboratories or directly in international data centers remotely, 24/7. Each participant has access to implement various configurations, Thus immediately applying the theory learned. Below are some scenarios drawn from laboratory activities.