Udemy Business

Teach on Udemy

Turn what you know into an opportunity and reach millions around the world.

Learn More

Your cart is empty.

Keep shopping

SC-900: Microsoft Security, Compliance, & Identity with SIMS

Name: SC-900: Microsoft Security, Compliance, & Identity with SIMS
Rating: 4.8 (1252 reviews)

Get prepared for the SC-900 exam with instructor led labs and hands on online simulations available 24/7

Role Play

Highest Rated

Created byJohn Christopher | 500,000+ enrollments

Last updated 2/2026

English

What you'll learn

Learn the concepts and perform hands on activities needed to pass the SC-900 exam
Gain a tremendous amount of knowledge involving securing Microsoft 365 / Azure Services
Get loads of hands on experience with securing Microsoft 365 / Azure Services
Utilize hands on simulations that can be access anytime, anywhere!

Course content

19 sections • 85 lectures • 12h 5m total length

Welcome to the course!4:06
Understanding the Microsoft 365 and Azure Environment1:48
Build a foundation in on-premises Active Directory, domain services, DMZ, and virtualization, then explore the Microsoft 365 and Azure cloud and its IaaS, PaaS, and SaaS models.
Having a Solid Foundation of Active Directory Domains12:11
Having a Solid Foundation of RAS, DMZ, and Virtualization13:09
Explore foundational concepts like active directory domain services, LDAP, and Kerberos, and how VPN, DMZ, and virtualization enable secure remote access and scalable on premise services.
Having a Solid Foundation of the Microsoft Cloud Services17:14
DO NOT SKIP: Portals renamed!1:51
Questions for John Christopher5:42
John Christopher explains how to get fast, official answers by consulting Docs.microsoft.com and Microsoft 365 resources, and directs you to exam lab practice, assignment videos, and course updates.
Certificate of Completion0:33

Describe the shared responsibility model7:18
Describe defense in depth4:44
Describe the Zero-Trust model6:59
Describe encryption and hashing6:30
Describe compliance concepts2:07
Explore how different industries confront regulatory compliance and discover the Microsoft Purview Compliance Portal as the centralized site for reporting, auditing, forensics, e-discovery, retention, and sensitivity information.

Describe conditional access11:29
Creating conditional access polies11:40
Describe Microsoft Entra roles and role-based access control16:03
Implement Microsoft Entra roles and role-based access control (RBAC)9:10
Explore how to implement role-based access control in Azure using Microsoft Entra, define roles with permissions, and assign them to users or services with activation and approvals.
Implement Microsoft Entra roles using Microsoft 3655:32
SIMULATION: Assign Greg Johnson the Billing Administrator role...

Visualizing general Azure networking24:47
Describe Azure distributed denial-of-service (DDoS) Protection3:39
Describe Azure Firewall21:28
Describe Web Application Firewall10:20
Discover how Azure web application firewall protects web services with front door, using global and regional policies, custom rules, and rate limiting to block sql injection and cross-site scripting.
Describe network segmentation with Azure virtual networks11:59
Learn to create and configure Azure virtual networks and subnets, assign address spaces such as 10.1.0.0/16 and 10.1.1.0/24, and explore NAT gateway, Azure Bastion, firewall, DDoS protection, and service endpoints.
Describe Azure Network Security groups19:21
Create a virtual machine in Azure40:56
Describe Azure Bastion8:31
Describe Azure Key Vault4:43
SIMULATION: Create an Azure Firewall with Premium SKU
SIMULATION: Create an NSG. Add an inbound rule that allows RDP Port 3389

Describe Microsoft Defender for Cloud & Cloud security posture management (CSPM)6:12
Describe the enhanced security features of Microsoft Defender for Cloud3:14
Discover how Defender for Cloud analyzes your environment for vulnerabilities using active recommendations, severity rankings, and remediation steps, including policy definitions and optional vulnerability assessments for servers, databases, and storage.
Describe security baselines for Azure3:53
Learn how Azure security baselines support regulatory compliance by aligning with NIST and CIS open standards, using Defender for Cloud to assess, remediate, and export reports.

Requirements

Willingness to put in the time and practice the steps shown in the course

Description

We really hope you'll agree, this training is way more then the average course on Udemy!

Have access to the following:

Training from an instructor of over 20 years who has trained thousands of people and also a Microsoft Certified Trainer
Lecture that explains the concepts in an easy to learn method for someone that is just starting out with this material
Instructor led hands on and simulations to practice that can be followed even if you have little to no experience

TOPICS COVERED INCLUDING HANDS ON LECTURE AND PRACTICE TUTORIALS:

Introduction

Welcome to the course
Understanding the Microsoft Environment
Having a Solid Foundation of Active Directory Domains
Having a Solid Foundation of RAS, DMZ, and Virtualization
Having a Solid Foundation of the Microsoft Cloud Services
Questions for John Christopher

Performing hands on activities

IMPORTANT Using Assignments in the course
Creating a free Microsoft 365 Azure AD Account
Getting your free Azure credit

Describe security and compliance concepts

Describe the shared responsibility model
Describe defense in depth
Describe the Zero-Trust model
Describe encryption and hashing
Describe compliance concepts

Define identity concepts

Define identity as the primary security perimeter
Define authentication
Define authorization
Describe the concept of directory services and Active Directory
Describe the concept of federation

Describe function and identity types of Microsoft Entra ID

Describe Azure AD
Describe Azure AD identities including external identities
Describe hybrid identity

Describe the authentication capabilities of Azure AD

Describe the authentication methods available in Azure AD
Describe Multi-factor Authentication
Describe self-service password reset
Describe password protection and management capabilities available in Azure AD

Describe access management capabilities of Azure AD

Describe conditional access
Creating conditional access polies
Describe the benefits of Azure AD roles
Describe the benefits of Azure AD role-based access control

Describe the identity protection and governance capabilities of Azure AD

Describe identity governance in Azure AD
Describe entitlement management
Describe access reviews
Describe the capabilities of Azure AD Privileged Identity Management (PIM)
Implementing Azure AD Privileged Identity Management (PIM)
Describe Azure AD Identity Protection

Describe basic security capabilities in Azure

Visualizing general Azure networking
Describe Azure DDoS protection
Describe Azure Firewall
Describe Network Segmentation with VNet
Describe Azure Network Security groups
Create a virtual machine in Azure
Describe Azure Bastion and JIT Access
Describe ways Azure encrypts data

Describe security management capabilities of Azure

Describe Microsoft Defender for Cloud & Cloud security posture management (CSPM)
Describe the enhanced security features of Microsoft Defender for Cloud
Describe security baselines for Azure

Describe security capabilities of Microsoft Sentinel

Define the concepts of security information and event management (SIEM) and SOAR
Describe threat detection and mitigation capabilities in Microsoft Sentinel

Describe threat protection with Microsoft 365 Defender

Describe Microsoft 365 Defender services
Describe Microsoft Defender for Office 365
Describe Microsoft Defender for Endpoint
Describe Microsoft Defender for Cloud Apps
Using Microsoft Defender for Cloud Apps for policy creation
Describe Microsoft Defender for Identity
Basics of setting up Microsoft Defender for Identity
Describe the Microsoft 365 Defender portal

Describe Microsoft’s Service Trust Portal and privacy principles

Describe the offerings of the Service Trust portal
Describe Microsoft’s privacy principles

Describe the compliance management capabilities of Microsoft Purview

Describe the Microsoft Purview compliance portal
Describe compliance manager
Describe the use and benefits of compliance score

Describe information protection & data lifecycle management of Microsoft Purview

Describe data classification capabilities
Describe the benefits of content explorer and activity explorer
Describe sensitivity labels
Basics of using sensitivity labels
Describe Data Loss Prevention (DLP)
Basics of using Data Loss Prevention (DLP)
Describe Records Management
Describe Retention Polices and Retention Labels

Describe insider risk capabilities in Microsoft Purview

Describe Insider Risk Management
Describe communication compliance
Describe information barriers

Describe resource governance capabilities in Azure

Describe Azure Policy
Describe Azure Blueprints
Describe the capabilities of the Microsoft Purview governance portal

Finishing Up

Where do I go from here?

Who this course is for:

IT people interested in learning and passing the Microsoft SC-900 exam!
IT people interested in learning a tremendous amount about security in Microsoft 365 / Azure Services

SC-900: Microsoft Security, Compliance, & Identity with SIMS

What you'll learn

Explore related topics

Course content

Introduction8 lectures • 57min

Performing hands on activities4 lectures • 31min

Describe security and compliance concepts5 lectures • 28min

Define identity concepts5 lectures • 28min

Describe function and identity types of Microsoft Entra ID6 lectures • 52min

Describe authentication capabilities of Microsoft Entra ID4 lectures • 48min

Describe access management capabilities of Microsoft Entra ID5 lectures • 54min

Describe the identity protection and governance capabilities of Azure AD4 lectures • 48min

Describe core infrastructure security services in Azure9 lectures • 2hr 26min

Describe security management capabilities of Azure3 lectures • 13min

Requirements

Description

Who this course is for: