You learn how to evaluate security solutions for securing Microsoft 365.
By the end of this module, you're able to:
- Evaluate security posture for collaboration and productivity workloads
- Evaluate a Microsoft Defender XDR solution
- Evaluate configurations and operational practices for Microsoft 365
You learn how to secure applications, APIs and the development process using techniques like posture management, threat modeling, and secure access for workload identities.
By the end of this module, you're able to:
- Evaluate security posture of existing application portfolios
- Evaluate threats to business-critical applications by using threat modeling
- Design and implement a full lifecycle strategy for application security
- Design and implement standards and practices for securing the application development process
- Design a solution for workload identity to authenticate and access Azure cloud resources
- Design a solution for API management and security
- Design a solution for secure access to applications
You learn about designing solutions that secure an organization's data using capabilities like Microsoft Purview, Defender for SQL, Defender for Storage.
By the end of this module, you are able to:
- Evaluate solutions for data discovery, classification, and threat prioritization
- Design solutions for data protection and encryption, including Azure Key Vault and infrastructure encryption
- Design security solutions for Azure data services, including Azure SQL, Azure Synapse Analytics, Azure Cosmos DB, and Azure Storage
- Design threat detection solutions using Microsoft Defender for Storage and Microsoft Defender for Databases
Apply your cybersecurity architect skills on a real business scenario in the area of securing apps and data. Analyze design requirements, answer conceptual and technical questions and design a solution to meet the business needs.
In this interactive case study, you:
- Explore risks related to application code, CI/CD pipelines, and cloud configuration drift.
- Learn how these challenges align with Zero Trust principles and DevSecOps best practices.
- Apply architectural reasoning to assess threats and design secure, scalable solutions for multi-cloud environments.

Syllabus

Evaluate solutions for securing Microsoft 365
- Introduction
- Evaluate security posture for productivity and collaboration workloads by using metrics
- Evaluate how Microsoft Defender for Office 365 and Microsoft Defender for Cloud Apps protect productivity workloads
- Evaluate how Microsoft Intune protects and manages endpoints
- Evaluate solutions for securing data in Microsoft 365 using Microsoft Purview
- Evaluate how data security and compliance controls protect organizational data used by Microsoft 365 Copilot
- Module assessment
- Summary
Design solutions for securing applications
- Introduction
- Design and implement standards to secure application development
- Design a full lifecycle strategy for application security
- Evaluate security posture of existing application portfolios
- Evaluate application threats with threat modeling
- Secure access for workload identities
- Design a solution for API management and security
- Design a solution for secure access to applications
- Map technologies to application security requirements
- Module assessment
- Summary
Design solutions for securing an organization's data
- Introduction
- Data security design principles and frameworks
- Evaluate solutions for data discovery and classification
- Specify priorities for mitigating threats to data
- Evaluate solutions for encryption of data at rest and in transit, including Azure KeyVault and infrastructure encryption
- Design data security for Azure workloads
- Design security for data used in AI workloads
- Design security for Azure Storage
- Design a security solution with Microsoft Defender for SQL and Microsoft Defender for Storage
- Module assessment
- Summary
Interactive case study: Securing apps and data
- Introduction
- Interactive case study
- Interactive case study highlights
- Knowledge check
- Summary