SC-5002 Secure Azure services and workloads with Microsoft Defender for Cloud regulatory compliance controls
- Course Duration
- 1 Days
Need Group Training
Course Description
This learning path guides you in securing Azure services and workloads using Microsoft Cloud Security Benchmark controls in Microsoft Defender for Cloud via the Azure portal.
Course Outline
1 – Examine Defender for Cloud regulatory compliance standards
- Regulatory compliance standards in Defender for Cloud
- Microsoft cloud security benchmark in Defender for Cloud
- Improve your regulatory compliance in Defender for Cloud
- Module assessment
2 – Enable Defender for Cloud on your Azure subscription
- Connect your Azure subscriptions
- Module assessment
3 – Filter network traffic with a network security group using the Azure portal
- Azure resource group
- Azure Virtual Network
- How network security groups filter network traffic
- Application security groups
- Module assessment
4 – Collect guest operating system monitoring data from Azure and hybrid virtual machines using Azure Monitor Agent
- Deploy the Azure Monitor Agent
- Collect data with Azure Monitor Agent
- Module assessment
5 – Explore just-in-time virtual machine access
- Understand just-in-time virtual machine access
- Enable just-in-time access on virtual machines
- Module assessment
6 – Configure Azure Key Vault networking settings
- Azure Key Vault basic concepts
- Best practices for Azure Key Vault
- Azure Key Vault network security
- Configure Azure Key Vault firewalls and virtual networks
- Azure Key Vault soft delete overview
- Virtual network service endpoints for Azure Key Vault
- Module assessment
7 – Connect an Azure SQL server using an Azure Private Endpoint using the Azure portal
- Azure Private Endpoint
- Azure Private Link
- Module assessment