1 - Manage identities in Microsoft Entra ID

• Secure users in Microsoft Entra ID
• Secure groups in Microsoft Entra ID
• Recommend when to use external identities
• Secure external identities
• Implement Microsoft Entra Identity protection

2 - Manage authentication by using Microsoft Entra ID

• Configure Microsoft Entra Verified ID
• Implement multifactor authentication (MFA)
• Implement passwordless authentication
• Implement password protection
• Implement single sign-on (SSO)
• Integrate single sign-on (SSO) and identity providers
• Recommend and enforce modern authentication protocols

3 - Manage authorization by using Microsoft Entra ID

• Configure Azure role permissions for management groups, subscriptions, resource groups, and resources
• Assign built-in roles in Microsoft Entra ID
• Assign built-in roles in Azure
• Create and assign a custom role in Microsoft Entra ID
• Implement and manage Microsoft Entra Permissions Management
• Configure Microsoft Entra Privileged Identity Management
• Configure role management and access reviews by using Microsoft Entra Identity Governance
• Implement Conditional Access policies

4 - Manage application access in Microsoft Entra ID

• Manage access to enterprise applications in Microsoft Entra ID, including OAuth permission grants
• Manage app registrations in Microsoft Entra ID
• Configure app registration permission scopes
• Manage app registration permission consent
• Manage and use service principals
• Manage managed identities for Azure resources
• Recommend when to use and configure a Microsoft Entra Application Proxy, including authentication

5 - Plan and implement security for virtual networks

• Plan and implement Network Security Groups (NSGs) and Application Security Groups (ASGs)
• Plan and implement User-Defined Routes (UDRs)
• Plan and implement Virtual Network peering or gateway
• Plan and implement Virtual Wide Area Network, including secured virtual hub
• Secure VPN connectivity, including point-to-site and site-to-site
• Implement encryption over ExpressRoute
• Configure firewall settings on PaaS resources
• Monitor network security by using Network Watcher, including NSG flow logging

6 - Plan and implement security for private access to Azure resources

• Plan and implement virtual network Service Endpoints
• Plan and implement Private Endpoints
• Plan and implement Private Link services
• Plan and implement network integration for Azure App Service and Azure Functions
• Plan and implement network security configurations for an App Service Environment (ASE)
• Plan and implement network security configurations for an Azure SQL Managed Instance

7 - Plan and implement security for public access to Azure resources

• Plan and implement Transport Layer Security (TLS) to applications, including Azure App Service and API Management
• Plan, implement, and manage an Azure Firewall, Azure Firewall Manager and firewall policies
• Plan and implement an Azure Application Gateway
• Plan and implement an Azure Front Door, including Content Delivery Network (CDN)
• Plan and implement a Web Application Firewall (WAF)
• Recommend when to use Azure DDoS Protection Standard

8 - Plan and implement advanced security for compute

• Plan and implement remote access to public endpoints, Azure Bastion and just-in-time (JIT) virtual machine (VM) access
• Configure network isolation for Azure Kubernetes Service (AKS)
• Secure and monitor AKS
• Configure authentication for AKS
• Configure security for Azure Container Instances (ACIs)
• Configure security for Azure Container Apps (ACAs)
• Manage access to Azure Container Registry (ACR)
• Configure disk encryption, Azure Disk Encryption (ADE), encryption as host, and confidential disk encryption
• Recommend security configurations for Azure API Management

9 - Plan and implement security for storage

• Configure access control for storage accounts
• Manage life cycle for storage account access keys
• Select and configure an appropriate method for access to Azure Files
• Select and configure an appropriate method for access to Azure Blob Storage
• Select and configure an appropriate method for access to Azure Tables
• Select and configure an appropriate method for access to Azure Queues
• Select and configure appropriate methods for protecting against data security threats, including soft delete, backups, versioning, and immutable storage
• Configure Bring your own key (BYOK)
• Enable double encryption at the Azure Storage infrastructure level

10 - Plan and implement security for Azure SQL Database and Azure SQL Managed Instance

• Enable database authentication by using Microsoft Entra ID
• Enable and monitor database audit
• Identify use cases for the Microsoft Purview governance portal
• Implement data classification of sensitive information by using the Microsoft Purview governance portal
• Plan and implement dynamic mask
• Implement transparent data encryption
• Recommend when to use Azure SQL Database Always Encrypted

11 - Plan, implement, and manage governance for security

• Create, assign, and interpret security policies and initiatives in Azure Policy
• Configure security settings by using Azure Blueprint
• Deploy secure infrastructures by using a landing zone
• Create and configure an Azure Key Vault
• Recommend when to use a dedicated Hardware Security Module (HSM)
• Configure access to Key Vault, including vault access policies and Azure Role Based Access Control
• Manage certificates, secrets, and keys
• Configure key rotation
• Configure backup and recovery of certificates, secrets, and keys

12 - Manage security posture by using Microsoft Defender for Cloud

• Implement Microsoft Defender for Cloud
• Identify and remediate security risks by using the Microsoft Defender for Cloud Secure Score and Inventory
• Assess compliance against security frameworks and Microsoft Defender for Cloud
• Add industry and regulatory standards to Microsoft Defender for Cloud
• Add custom initiatives to Microsoft Defender for Cloud
• Connect hybrid cloud and multicloud environments to Microsoft Defender for Cloud
• Identify and monitor external assets by using Microsoft Defender External Attack Surface Management

13 - Configure and manage threat protection by using Microsoft Defender for Cloud

• Enable workload protection services in Microsoft Defender for Cloud, including Microsoft Defender for Storage, Databases, Containers, App Service, Key Vault, Resource Manager, and DNS
• Configure Microsoft Defender for Servers
• Configure Microsoft Defender for Azure SQL Database
• Manage and respond to security alerts in Microsoft Defender for Cloud
• Configure workflow automation by using Microsoft Defender for Cloud
• Evaluate vulnerability scans from Microsoft Defender for Server

14 - Configure and manage security monitoring and automation solutions

• Monitor security events by using Azure Monitor
• Configure data connectors in Microsoft Sentinel
• Create and customize analytics rules in Microsoft Sentinel
• Configure automation in Microsoft Sentinel

Additional course details:

Nexus Humans AZ-500T00 Microsoft Azure Security Technologies training program is a workshop that presents an invigorating mix of sessions, lessons, and masterclasses meticulously crafted to propel your learning expedition forward.

This immersive bootcamp-style experience boasts interactive lectures, hands-on labs, and collaborative hackathons, all strategically designed to fortify fundamental concepts.

Guided by seasoned coaches, each session offers priceless insights and practical skills crucial for honing your expertise. Whether you're stepping into the realm of professional skills or a seasoned professional, this comprehensive course ensures you're equipped with the knowledge and prowess necessary for success.

While we feel this is the best course for the AZ-500T00 Microsoft Azure Security Technologies course and one of our Top 10 we encourage you to read the course outline to make sure it is the right content for you.

Additionally, private sessions, closed classes or dedicated events are available both live online and at our training centres in Dublin and London, as well as at your offices anywhere in the UK, Ireland or across EMEA.

FAQ for the AZ-500 Microsoft Azure Security Technologies Course

Available Delivery Options for the AZ-500 Microsoft Azure Security Technologies training.

• Live Instructor Led Classroom Online (Live Online)
• Traditional Instructor Led Classroom (TILT/ILT)
• Delivery at your offices in London or anywhere in the UK
• Private dedicated course as works for your staff.

How many CPD hours does the AZ-500 Microsoft Azure Security Technologies training provide?

The 4 day. AZ-500 Microsoft Azure Security Technologies training course give you up to 24 CPD hours/structured learning hours. If you need a letter or certificate in a particular format for your association, organisation or professional body please just ask.

Is the AZ-500 Microsoft Azure Security Technologies training appropriate for someone learning to use Azure in a professional environment?

Yes the AZ-500 Microsoft Azure Security Technologies is appropriate for someone looking to use Azure in a professional workspace or environment. But do make sure to note any prerequisites, read the course outline to ensure it is the right fit for you or your teams requirements and preferences.

What is the correct audience for the AZ-500 Microsoft Azure Security Technologies training?

This course is for Azure Security Engineers who are planning to take the associated certification exam, or who are performing security tasks in their day-to-day job. This course would also be helpful to an engineer that wants to specialize in providing security for Azure-based digital platforms and play an integral role in protecting an organization's data.

Do you provide training for the AZ-500 Microsoft Azure Security Technologies.

Yes we provide corporate training, dedicated training and closed classes for the AZ-500 Microsoft Azure Security Technologies. This can take place anywhere in UK including, England, Scotland, Cymru (Wales) or Northern Ireland or live online allowing you to have your teams from across UK or further afield to attend a single training event saving travel and delivery expenses.

What is the duration of the AZ-500 Microsoft Azure Security Technologies program.

The AZ-500 Microsoft Azure Security Technologies training takes place over 4 day(s), with each day lasting approximately 8 hours including small and lunch breaks to ensure that the delegates get the most out of the day.

What other terms do people search for when looking for this course?

Popular related searched include az500 az 500.

Why are Nexus Human the best provider for the AZ-500 Microsoft Azure Security Technologies?

Nexus Human are recognised as one of the best training companies as they and their trainers have won and hold many awards and titles including having previously won the Small Firms Best Trainer award, national training partner of the year for UK on multiple occasions, having trainers in the global top 30 instructor awards in 2012, 2019 and 2021. Nexus Human has also been nominated for the Tech Excellence awards multiple times. Learning Performance institute (LPI) external training provider sponsor 2024.

Is there a discount code for the AZ-500 Microsoft Azure Security Technologies training.

Yes, the discount code PENPAL5 is currently available for the AZ-500 Microsoft Azure Security Technologies training. Other discount codes may also be available but only one discount code or special offer can be used for each booking. This discount code is available for companies and individuals.