SC-900: Microsoft Security, Compliance, and Identity Fundamentals

Course Overview

This course provides introductory level knowledge on security, compliance, and identity concepts and related cloud-based Microsoft solutions.

Key Learning Areas

Describe basic concepts of security, compliance, and identity.
Describe the concepts and capabilities of Microsoft identity and access management solutions.
Describe the capabilities of Microsoft security solutions.
Describe the compliance management capabilities in Microsoft.

Course Outline

Describe Security and Compliance Concepts

Describe the shared responsibility model
Describe defense in depth
Describe the Zero Trust model
Describe encryption and hashing
Describe governance, risk, and compliance (GRC) concepts

Describe Identity Concepts

Define authentication and authorization
Define identity as the primary security perimeter
Describe the role of the identity provider
Describe the concept of directory services and Active Directory
Describe the concept of federation

Describe the Function and Identity Types of Microsoft Entra ID

Describe Microsoft Entra ID
Describe types of identities
Describe hybrid identity
Describe external identities

Describe the Authentication Capabilities of Microsoft Entra ID

Describe authentication methods
Describe multifactor authentication
Describe self-service password reset
Describe password protection and management capabilities

Describe Access Management Capabilities of Microsoft Entra

Describe Conditional Access
Describe Global Secure Access in Microsoft Entra
Describe Microsoft Entra roles and role-based access control (RBAC)

Describe the Identity Protection and Governance Capabilities of Microsoft Entra

Describe Microsoft Entra ID Governance
Describe access reviews
Describe entitlement management
Describe the capabilities of Privileged identity Management
Describe Microsoft Entra ID Protection
Describe Microsoft Entra Verified ID
Describe Microsoft Entra integration with Microsoft Security Copilot

Describe Microsoft Security Copilot

Get acquainted with Microsoft Security Copilot
Describe Microsoft Security Copilot terminology
Describe how Microsoft Security Copilot processes prompt requests
Describe the elements of an effective prompt
Describe how to enable Microsoft Security Copilot

Describe Core Infrastructure Security Services in Azure

Describe Azure DDoS protection
Describe Azure Firewall
Describe Web Application Firewall
Describe network segmentation in Azure
Describe Azure Network Security Groups
Describe Azure Bastion
Describe Azure Key Vault

Describe the Security Management Capabilities in Azure

Describe Microsoft Defender for Cloud
Describe how security policies and initiatives improve cloud security posture
Describe Cloud security posture management
Describe the enhanced security of Microsoft Defender for Cloud
Describe DevOps security management

Describe Security Capabilities of Microsoft Sentinel

Define the concepts of SIEM and SOAR
Describe threat detection and mitigation capabilities in Microsoft Sentinel
Describe Microsoft Sentinel integration with Microsoft Security Copilot

Describe Threat Protection with Microsoft Defender XDR

Describe Microsoft Defender XDR services
Describe Microsoft Defender for Office 365
Describe Microsoft Defender for Endpoint
Describe Microsoft Defender for Cloud Apps
Describe Microsoft Defender for Identity
Describe Microsoft Defender Vulnerability Management
Describe Microsoft Defender Threat Intelligence
Describe the Microsoft Defender portal
Describe Copilot integration with Microsoft Defender XDR

Describe Microsoft’s Service Trust Portal and Privacy Capabilities

Describe the offerings of the Service Trust portal
Describe Microsoft’s privacy principles
Describe Microsoft Priva

Describe the Data Security Solutions of Microsoft Purview

Describe the data classification capabilities of Microsoft Purview Information Protection
Describe sensitivity labels and policies in Microsoft Purview Information Protection
Describe data loss prevention in Microsoft Purview
Describe insider risk management in Microsoft Purview
Describe adaptive protection in Microsoft Purview

Describe the Data Compliance Solutions of Microsoft Purview

Describe audit in Microsoft Purview
Describe eDiscovery
Describe Compliance Manager
Describe Communication Compliance
Describe Data Lifecycle Management
Describe Records Management

Describe the Data Governance Solutions of Microsoft Purview

Describe the concepts and benefits of data governance
Describe Microsoft Purview Data Catalog

Who Benefits

The audience for this course is looking to obtain an introduction to security, compliance, and identity (SCI) across cloud-based and related Microsoft services. The content for this course aligns to the SC-900 exam objective domain. Candidates should be familiar with Microsoft Azure and Microsoft 365 and understand how Microsoft security, compliance, and identity solutions can span across these solution areas to provide a holistic and end-to-end solution. Before attending this course, students must have:

General understanding of networking and cloud computing concepts.
General IT knowledge or any general experience working in an IT environment.
General understanding of Microsoft Azure and Microsoft 365.

This class prepares an attendee for the Microsoft Exam SC-900: Microsoft Security, Compliance, and Identity Fundamentals.

Prerequisites

Before attending this course, students must have:

General understanding of networking and cloud computing concepts.
General IT knowledge or any general experience working in an IT environment.
General understanding of Microsoft Azure and Microsoft 365.

Want this course for your team?

Atmosera can provide this course virtually or on-site. Please reach out to discuss your requirements.