
Explore the secure score in Microsoft Defender for Cloud to assess security posture, view recommendations, and improve the score by addressing the attack path and controls like disk encryption.
Define endpoint security for desktops, laptops, smartphones, tablets, servers, and IoT devices, protecting against malware, unauthorized access, phishing, and data leaks with real-time monitoring and endpoint detection and response.
We really hope you'll agree, this training is way more than the average course on Udemy!
Have access to the following:
Training from an instructor of over 25+ years who has trained thousands of people and also a Microsoft Certified Trainer
Lecture that explains the concepts in an easy to learn method for someone that is just starting out with this material
Instructor led hands on and simulations to practice that can be followed even if you have little to no experience
TOPICS COVERED INCLUDING HANDS ON LECTURE AND PRACTICE TUTORIALS:
Introduction
Welcome to the course!
Understanding the Microsoft 365 and Azure Environment
A Solid Foundation of Active Directory Domains
A Solid Foundation of RAS, DMZ, and Virtualization
A Solid Foundation of the Microsoft Cloud Services
Portals renamed!
Using Assignments in the course
Questions for John Christopher
Certificate of Completion
Hands on setup videos for the course
Before beginning your account setup
Creating a trial Microsoft 365/Azure Account
Preparing Microsoft Entra for Device Management
Device management concepts in Microsoft's cloud services
Disable Security Defaults in Entra ID before proceeding
Setting up device management support in Microsoft Entra ID
Introduction to Microsoft Defender for Cloud
Introduction to Microsoft Defender for Cloud
How devices get managed by Defender for Cloud
Exploring the Microsoft Defender for Cloud dashboard
Understanding the cost of Microsoft Defender for Cloud Plans
Enabling plans for Microsoft Defender for Cloud
Using the Secure Score to monitor security posture
Monitoring Servers with Microsoft Defender for Cloud / Defender for Servers
What is Microsoft Defender for Servers?
Setting up a Windows Server virtual machine in Azure
Verifying the Windows Server virtual machine is seen by Defender for Cloud
Concepts of using Azure Arc to manage On-Premises servers
Using Defender for Cloud recommendations without full CSPM support
Cloud Security Posture Management (CSPM)
What is Cloud Security Posture Management (CSPM)?
Checking the features supported by Cloud Security Posture Management (CSPM)
Enabling Cloud Security Posture Management (CSPM)
Understanding the purpose of Common Vulnerabilities and Exposures (CVEs)
Risk Factors and Attack Paths now that full CSPM is enabled
Creating a Microsoft 365 group to represent a SecOps Security Team
Assigning recommendations to SecOps
Strengthening Security with Microsoft Defender for Endpoint
Understanding the concepts of Endpoint Security
What is Microsoft Defender for Endpoint?
How licensing works with Microsoft Defender for Endpoint
How Defender for Endpoint and Defender for Cloud work together
Assigning role permissions for Microsoft Defender management
How devices get onboarded into Defender for Endpoint
Exploring the information for a device managed by Defender for Endpoint
Strengthening Storage Security
Understanding the concepts of Azure storage accounts
Creating an Azure storage account
Configure Defender for Storage settings on a storage account
Testing Defender for Storage by uploading malware
Viewing storage account recommendations and alerts
Database Security with Defender for Cloud
Understanding the basic concepts of relational databases
Creating an Azure Microsoft SQL Database
Using SQL Server Management Studio (SSMS) for connecting to SQL
Connecting to a SQL database with SSMS
Managing Defender for Cloud support for SQL Databases
Enabling Vulnerability Assessment support for SQL
Investigations in the Microsoft Defender environments
Triggering sample events through Defender for Cloud
Manual investigation and remediation with Defender for Cloud
Investigating an Attack path analysis
Investigations with Microsoft Defender XDR
Automated investigation and remediation (AIR)
Using a device group to enable automated investigation and remediation
Performing searches with Cloud Security Explorer and Kusto Query Language (KQL)
Using Cloud Security Explorer for locating possible vulnerable resources
Concepts of Kusto Query Language (KQL)
How to use the Microsoft KQL Demo environment
Using basic KQL syntax for searching
How to summarize KQL results and filter based on time ranges
Using KQL with columns, amounts and characters
Variables and combining output data with KQL
Searching for Defender for Cloud alert data with KQL
Cloud Security blades in Defender for Cloud
Reviewing security posture
Understanding Regulatory Compliance
Securing resources with Workload Protections
Data and AI security
Viewing Network Security methods in Defender for Cloud
Concepts of securing development pipelines with DevOps security