Secure Azure Services and Workloads with Microsoft Defender for Cloud Regulatory Compliance Controls (SC-5002)
This learning path guides you in securing Azure services and workloads using Microsoft Cloud Security Benchmark controls in Microsoft Defender for Cloud via the Azure portal.
Course Information
Price:
Duration:
Certification:
Exam:
Continuing Education Credits:
Learning Credits:
Check out our full list of training locations and learning formats. Please note that the location you choose may be an Established HD-ILT location with a virtual live instructor.
Train face-to-face with the live instructor.
Access to on-demand training content anytime, anywhere.
Attend the live class from the comfort of your home or office.
Interact with a live, remote instructor from a specialized, HD-equipped classroom near you. An SLI sales rep will confirm location availability prior to registration confirmation.
All Sunset Learning dates are guaranteed to run!
Register
Prerequisites:
Target Audience:
- Security Engineer
- Azure Security Engineers
Course Objectives:
Student will learn:
- Examine Defender for Cloud Regulatory Compliance Standards
- Enable Defender for Cloud on Your Azure Subscription
- Filter Network Traffic with a Network Security Group Using the Azure Portal
- Create a Log Analytics Workspace for Microsoft Defender for Cloud
- Configure & Integrate a Log Analytics Agent & Workspace in Defender for Cloud
- Explore Just-in-Time Virtual Machine Access
- Configure Azure Key Vault Networking Settings
- Connect an Azure SQL Server Using an Azure Private Endpoint Using the Azure Portal
Course Outline:
Examine Defender for Cloud Regulatory Compliance Standards:
- Regulatory compliance standards in Defender for Cloud
- Microsoft cloud security benchmark in Defender for Cloud
- Improve your regulatory compliance in Defender for Cloud
Enable Defender for Cloud on Your Azure Subscription:
- Connect your Azure subscriptions
- Exercise – Enable Defender for Cloud on your Azure subscription
Filter Network Traffic with a Network Security Group Using the Azure Portal:
- Azure resource group
- Azure Virtual Network
- How network security groups filter network traffic
- Application security groups
- Exercise – Create a virtual network infrastructure
Create a Log Analytics Workspace for Microsoft Defender for Cloud:
- Log Analytics workspace
- Exercise – Create a Log Analytics workspace for Microsoft Defender for Cloud
Configure & Integrate a Log Analytics Agent & Workspace in Defender for Cloud:
- Collect data from your workloads with the Log Analytics agent
- Configure the Log Analytics agent and workspace
- Exercise – Configure and integrate a Log Analytics agent and workspace agent in Defender for Cloud
Explore Just-in-Time Virtual Machine Access:
- Understand just-in-time virtual machine access
- Enable just-in-time access on virtual machines
- Exercise – Enable just-in-time access on virtual machines
Configure Azure Key Vault Networking Settings:
- Azure Key Vault basic concepts
- Best practices for Azure Key Vault
- Azure Key Vault network security
- Configure Azure Key Vault firewalls and virtual networks
- Exercise – Configure Key Vault networking settings
- Azure Key Vault soft delete overview
- Virtual network service endpoints for Azure Key Vault
- Exercise – Perform soft-delete and purge protection key vault recovery
Connect an Azure SQL Server Using an Azure Private Endpoint Using the Azure Portal:
- Azure Private Endpoint
- Azure Private Link
- Exercise – Connect to an Azure SQL server using an Azure Private Endpoint using the Azure portal
