45 reviews

Defend against cyberthreats with Microsoft Defender XDR (SC-5004)

Item: defend-against-cyberthreats-with-microsoft-defender-xdr-sc-5004-course
Rating: 10
Author: Stephen Ridgway

The Defend Against Cyberthreats with Microsoft Defender XDR (SC-5004) course trains professionals in using Microsoft Defender XDR to detect and mitigate security threats. Gain hands-on experience in securing enterprise environments against advanced cyberattacks.

course: Defend against cyberthreats with Microsoft Defender XDR (SC-5004)

Duration: 1 day

Format: Virtual or Classroom

Attend this and 60+ other Microsoft courses for FREE with Unlimited Microsoft Training

Overview

This one-day course focuses on the advanced capabilities of Microsoft Defender XDR to protect enterprise environments from cyberthreats. Participants will learn threat detection, incident response, and mitigation strategies to secure organizational assets. The course provides practical, hands-on training in deploying and managing Microsoft Defender XDR tools, making it ideal for security specialists, IT administrators, and incident response teams.

This course includes

Instructor-led training
Personal Learning Path
Email, chat and phone support

Who is the Defend against cyberthreats with Microsoft Defender XDR (SC-5004) course for?

The Defend Against Cyberthreats with Microsoft Defender XDR (SC-5004) course is tailored for IT administrators, cybersecurity specialists, and incident response teams who are responsible for detecting, responding to, and mitigating cyberthreats. It is ideal for professionals looking to enhance their skills in using Microsoft Defender XDR to protect enterprise environments from advanced threats. This course is particularly suited for individuals aiming to strengthen their organization’s cybersecurity posture and develop expertise in modern threat defense techniques.

Curriculum

What you will learn during our Defend against cyberthreats with Microsoft Defender XDR (SC-5004) course.

Mitigate incidents using Microsoft Defender

Learn how the Microsoft Defender portal provides a unified view of incidents from the Microsoft Defender family of products.
Use the Microsoft Defender portal
Manage incidents
Investigate incidents
Manage and investigate alerts
Manage automated investigations
Use the action center
Explore advanced hunting
Investigate Microsoft Entra signin logs
Understand Microsoft Secure Score
Analyze threat analytics
Analyze reports
Configure the Microsoft Defender portal

Deploy the Microsoft Defender for Endpoint environment

Learn how to deploy the Microsoft Defender for Endpoint environment, including onboarding devices and configuring security.
Create your environment
Understand operating systems compatibility and features
Onboard devices
Manage access
Create and manage roles for rolebased access control
Configure device groups
Configure environment advanced features

Configure for alerts and detections in Microsoft Defender for Endpoint

Learn how to configure settings to manage alerts and notifications. You'll also learn to enable indicators as part of the detection process.
Configure advanced features
Configure alert notifications
Manage alert suppression
Manage indicators

Configure and manage automation using Microsoft Defender for Endpoint

Learn how to configure automation in Microsoft Defender for Endpoint by managing environmental settings.
Configure advanced features
Manage automation upload and folder settings
Configure automated investigation and remediation capabilities
Block at risk devices

Perform device investigations in Microsoft Defender for Endpoint

Microsoft Defender for Endpoint provides detailed device information, including forensics information. Learn about information available to you through Microsoft Defender for Endpoint that aids in your investigations.
Use the device inventory list
Investigate the device
Use behavioral blocking
Detect devices with device discovery

Defend against Cyberthreats with Microsoft Defender XDR lab exercises

In this module, you learned how to configure Microsoft Defender XDR, deploy Microsoft Defender for Endpoint, and onboard devices. You also configured policies, mitigated threats and responded to incidents with Defender XDR.
Configure the Microsoft Defender XDR environment
Deploy Microsoft Defender for Endpoint
Mitigate Attacks with Microsoft Defender for Endpoint

Preparation

How to best be prepared for our Defend against cyberthreats with Microsoft Defender XDR (SC-5004) course.

At Readynez, we provide many resources and have experienced experts in the field. That is why we are also very successful with many satisfied customers. You can therefore safely take your course with us.

In order to take the Defend against cyberthreats with Microsoft Defender XDR (SC-5004) course, however, some prerequisites are required. You have the perfect starting point to take this course with these prerequisites:

Experience using the Microsoft Defender portal
Basic understanding of Microsoft Defender for Endpoint
Basic understanding of Microsoft Sentinel
Experience using Kusto Query Language (KQL) in Microsoft Sentinel

Meet our instructors

Meet some of the Readynez Instructors you can meet on your course. They are experts, passionate about what they do, and dedicated to give back to their industry, their field, and those who want to learn, explore, and advance in their careers.

Michel Aguilera

Michel Aguilera delivers high-impact, LIVE instructor-led training in Microsoft Cloud, infrastructure and cybersecurity for professionals seeking real-world skills and certification readiness. With 20+ years of global experience and deep technical expertise, he helps teams master modern IT environments - from hybrid cloud to secure digital workplaces - with clarity and practical guidance.

Meet the Instructor: Michel Aguilera

When it comes to real-world experience in cloud, cybersecurity, and infrastructure, Michel Aguilera brings the full package.

With over 20 years in IT, Michel has worn many hats: consultant, trainer, project manager, and integration expert. Whether it’s large-scale Windows migrations, Datacenter consolidations, ITSM rollouts, cloud implementations, and cybersecurity solutions, he brings clarity, structure, and deep technical expertise to the table.

Michel is not only a Microsoft and cybersecurity specialist, but also fluent in five languages, making him a sought-after instructor across borders and industries.
His multicultural perspective and agile approach help organizations navigate everything from hybrid infrastructures to the adoption of AI tools like Microsoft Copilot and ChatGPT.

As a passionate trainer and consultant, he empowers professionals to implement resilient, secure, and scalable IT environments, keeping pace with the ever-evolving tech landscape.

With Michel, you can expect a training experience that is structured, practical, multilingual if needed, and deeply insightful.

Find your next Readynez courses with Michel here.

Read Less

Julian Sharp

Julian Sharp delivers high-quality, LIVE instructor-led training in Microsoft Dynamics 365 and Power Platform for professionals seeking real-world skills and certification readiness. With decades of industry experience and deep technical expertise, he helps learners master complex solutions efficiently.

Meet the Instructor: Julian Sharp
MCT | MVP | Solution Architect | Dynamics 365 & Power Platform Expert

With 20+ years of experience and over 16 years specializing in Dynamics CRM/365 and Power Platform, Julian has trained thousands of professionals and helped organizations solve real business challenges using Microsoft technologies.

A Microsoft Certified Trainer since 2007 and a Microsoft MVP, Julian brings a rare combination of deep technical knowledge and a practical, business-first mindset.

He’s not just an instructor - he’s a community leader, consultant, and solution architect trusted by enterprises across the globe.

Microsoft MVP – Business Applications 
Specialist in Dynamics 365, Power Platform & Azure 
Developer of Microsoft courseware
Speaker & mentor at Microsoft community events

Ready to build solutions with one of the best in the field?

Explore upcoming courses with Julian Sharp to get started.

Read Less

FAQ

FAQs for the Defend against cyberthreats with Microsoft Defender XDR (SC-5004) course.

What is the Defend Against Cyberthreats with Microsoft Defender XDR (SC-5004) course for?

This course focuses on training IT professionals to use Microsoft Defender XDR for detecting, responding to, and mitigating cyberthreats. It teaches participants how to manage security incidents, defend against advanced attacks, and ensure the security of their organization's IT infrastructure.

How do I prepare for the SC-5004 course?

It’s beneficial to have basic knowledge of cybersecurity principles, Microsoft Defender tools, and threat detection processes. Familiarizing yourself with general cybersecurity protocols and incident response practices will help you better understand the course content.

What are the prerequisites for this course?

Participants should have a foundational understanding of cybersecurity, familiarity with Microsoft Defender tools, and basic knowledge of threat management and incident response.

How much does the SC-5004 course cost?

The Defend Against Cyberthreats with Microsoft Defender XDR (SC-5004) course costs €705, which includes hands-on training and in-depth coverage of Microsoft Defender XDR capabilities.

What topics are covered in the SC-5004 course?

Topics include threat detection, incident response management, mitigating advanced attacks, and implementing Microsoft Defender XDR tools to secure enterprise environments.

Is completing the SC-5004 course worth it for my career?

Yes, this course provides hands-on expertise in using Microsoft Defender XDR to combat cyberthreats, making it an excellent investment for professionals seeking to enhance their career in cybersecurity.

What credential does the SC-5004 course provide?

This course does not offer certification but equips participants with practical skills to manage cyberthreats and enhance their organization's security posture using Microsoft Defender XDR.

Can I take the SC-5004 course online?

Yes, the course is available online, offering a flexible learning experience with live instruction and practical labs.

How easy or difficult is the SC-5004 course?

The course is moderately challenging, designed for individuals with a basic understanding of cybersecurity and Microsoft Defender tools. It blends theoretical content with hands-on labs to ensure a comprehensive learning experience.

How much salary can I get after completing the SC-5004 course?

Cybersecurity professionals specializing in Microsoft Defender XDR can expect to earn between €70,000 and €120,000 annually, depending on their experience and role.

Reviews

Feedback from our delegates.

Johan Andersson

Easy to attend over Teams and an excellent instructor gave me great value for the time I invested.

Stephen Ridgway

Readynez is the best training provider I've used for many years. Their customer service is first class, prices are very competitive and instruction excellent.