SC-100T00: Microsoft Cybersecurity Architect: 4 Days Workshop

In SC-100T00: Microsoft Cybersecurity Architect training, you will also learn how to design and architect solutions using zero trust principles and specify security requirements for cloud infrastructure in different service models (SaaS, PaaS, IaaS).

Target Audience

• IT professionals with advanced experience and knowledge in a wide range of security engineering areas, including identity and access, platform protection, security operations, securing data, and securing applications.

• They should also have experience with hybrid and cloud implementations.

Prerequisites

Required

• Advanced experience and knowledge in identity and access, platform protection, security operations, securing data and securing applications.

• Experience with hybrid and cloud implementations.

• Agenda

• Day 1

• Build an overall security strategy and architecture

1. Zero Trust overview
2. Develop Integration points in an architecture
3. Develop security requirements based on business goals

• Design a security operations strategy

1. Understand security operations frameworks, processes, and procedures
2. Design a logging and auditing security strategy
3. Develop security operations for hybrid and multi-cloud environments

• Design an identity security strategy

1. Secure access to cloud resources
2. Recommend an identity store for security
3. Recommend secure authentication and security authorization strategies

Day 2

• Evaluate a regulatory compliance strategy

1. Design and validate implementation of Azure Policy
2. Interpret compliance requirements and their technical capabilities
3. Evaluate infrastructure compliance by using Microsoft Defender for Cloud

• Evaluate security posture and recommend technical strategies to manage risk

1. Design security for an Azure Landing Zone
2. Evaluate security postures by using benchmarks
3. Evaluate security postures by using Microsoft Defender for Cloud

• Understand architecture best practices and how they are changing with the Cloud

1. Plan and implement a security strategy across teams
2. Establish a strategy and process for proactive and continuous evolution of a security strategy
3. Understand network protocols and best practices for network segmentation and traffic filtering

Day 3

• Design a strategy for securing server and client endpoints

1. Specify security baselines for server and client endpoints
2. Specify security requirements for servers
3. Specify security requirements for mobile devices and clients

• Design a strategy for securing PaaS, IaaS, and SaaS services

1. Specify security baselines for PaaS services
2. Specify security baselines for IaaS services
3. Specify security baselines for SaaS services

Day 4

• Specify security requirements for applications

1. Understand application threat modeling
2. Specify priorities for mitigating threats to applications
3. Specify a security standard for onboarding a new application

• Design a strategy for securing data

1. Prioritize mitigating threats to data
2. Design a strategy to identify and protect sensitive data
3. Specify an encryption standard for data at rest and in motion