This advanced, expert-level course is designed for experienced cybersecurity professionals. While not required, students are strongly encouraged to have completed and passed another associate-level certification in the security, compliance, and identity portfolio (such as AZ-500, SC-200, or SC-300) before attending. The course prepares participants with advanced expertise to design and evaluate comprehensive cybersecurity strategies in key areas: Zero Trust architecture, Governance Risk Compliance (GRC), security operations (SecOps), and data and application protection. You will also learn to design solutions applying zero trust principles and specify security requirements for cloud infrastructure across different service models, including SaaS, PaaS, and IaaS.
Target Audience Profile:
This course is intended for experienced cloud security engineers who have completed a previous associate-level certification in the security, compliance, and identity portfolio. Students should possess advanced knowledge and hands-on experience across multiple security engineering domains, including identity and access management, platform protection, security operations, data protection, and application security. Participants should also have substantial experience with hybrid and cloud implementations. Beginning students should instead pursue SC-900: Microsoft Security, Compliance, and Identity Fundamentals.
Prerequisites:
Before attending this course, you must have:
- Successfully completed an associate-level certification such as AZ-500, SC-200, or SC-300 (highly recommended)
- Advanced knowledge and experience with identity and access management, platform protection, security operations, data protection, and application security
- Substantial hands-on experience with hybrid and cloud deployments
Career Role:
Solution Architect
Exam Preparation:
SC-100
Course Structure
MODULE 1
Introduction to Zero Trust architecture and best practice frameworks
MODULE 2
Design solutions that align with the Cloud Adoption Framework (CAF) and Well-Architected Framework (WAF)
MODULE 3
Design solutions that align with the Microsoft Cybersecurity Reference Architecture (MCRA) and Microsoft Cloud Security Benchmark (MCSB)
MODULE 4
Design a resiliency strategy for common cyberthreats including ransomware and other advanced threats
MODULE 5
Case study: Design solutions that align with security best practices and organizational priorities
MODULE 6
Design solutions for regulatory compliance and governance requirements
MODULE 7
Design solutions for identity and access management
MODULE 8
Design solutions for securing privileged access and administrative accounts
MODULE 9
Design solutions for security operations and monitoring
MODULE 10
Case study: Design security operations, identity, and compliance capabilities integrated across the enterprise
MODULE 11
Design solutions for securing Microsoft 365 applications and data
MODULE 12
Design solutions for securing applications and their data throughout the development lifecycle
MODULE 13
Design solutions for securing an organization's data across storage, transmission, and processing
MODULE 14
Case study: Design comprehensive security solutions for applications and data
MODULE 15
Specify requirements for securing SaaS, PaaS, and IaaS cloud services
MODULE 16
Design solutions for security posture management in hybrid and multicloud environments
MODULE 17
Design solutions for securing server and client endpoints
MODULE 18
Design solutions for network security and boundary protection
MODULE 19
Case study: Design comprehensive security solutions for infrastructure