Aron Mesterbasic
If you´re looking to train with the best, you´ve come to the right place. The Microsoft Certified Azure Security Engineer course will teach you the knowledge and skills needed to implement security controls, maintain the security posture, and identify and remediate vulnerabilities by using a variety of security tools. The course covers scripting and automation, virtualization, and cloud N-tier architecture.
Your course package is designed to provide maximum learning and convenience. This is included in the price of your course:
Your expert instructor will get you ready for the following exam and certification, which are included in your course package and covered by the Certification guarantee.
You´ll have the perfect starting point for your training with these prerequisites:
Before attending this course, it is strongly encouraged that you acquire the knowledge equivalent to what is assessed as part of the Microsoft Azure Administrator Associate certification.
Using our engaging learning methodology using a variety of tools, we’ll cover the entire curriculum.
Manage identity and access
Manage Azure Active Directory identities
- configure security for service principals
- manage Azure AD directory groups
- manage Azure AD users
- manage administrative units
- configure password writeback
- configure authentication methods including password hash and Pass Through Authentication (PTA), OAuth, and passwordless
- transfer Azure subscriptions between Azure AD tenants
Configure secure access by using Azure AD
- monitor privileged access for Azure AD Privileged Identity Management (PIM)
- configure Access Reviews
- configure PIM
- implement Conditional Access policies including Multi-Factor Authentication (MFA)
- configure Azure AD identity protection
Manage application access
- create App Registration
- configure App Registration permission scopes
- manage App Registration permission consent
- manage API access to Azure subscriptions and resources
Manage access control
- configure subscription and resource permissions
- configure resource group permissions
- configure custom RBAC roles
- identify the appropriate role or apply principle of least privilege
- interpret permissions or check access
Implement platform protection
Implement advanced network security
- secure the connectivity of virtual networks (VPN authentication, Express Route encryption)
- configure Network Security Groups (NSGs) and Application Security Groups (ASGs)
- create and configure Azure Firewall
- implement Azure Firewall Manager
- configure Azure Front Door service as an Application Gateway
- configure a Web Application Firewall (WAF) on Azure Application Gateway
- configure Azure Bastion
- configure a firewall on a storage account, Azure SQL, KeyVault, or App Service
- implement Service Endpoints
- implement DDoS protection
Configure advanced security for compute
- configure endpoint protection
- configure and monitor system updates for VMs
- configure authentication for Azure Container Registry
- configure security for different types of containers
o implement vulnerability management
o configure isolation for AKS
o configure security for container registry
- implement Azure Disk Encryption
- configure authentication and security for Azure App Service
o configure SSL/TLS certs
o configure authentication for Azure Kubernetes Service
o configure automatic updates
Manage security operations
Monitor security by using Azure Monitor
- create and customize alerts
- monitor security logs by using Azure Monitor
- configure diagnostic logging and log retention
Monitor security by using Azure Security Center
- evaluate vulnerability scans from Azure Security Center
- configure Just in Time VM access by using Azure Security Center
- configure centralized policy management by using Azure Security Center
- configure compliance policies and evaluate for compliance by using Azure Security Center
- configure workflow automation by using Azure Security Center
Monitor security by using Azure Sentinel
- create and customize alerts
- configure data sources to Azure Sentinel
- evaluate results from Azure Sentinel
- configure a playbook by using Azure Sentinel
Configure security policies
- configure security settings by using Azure Policy
- configure security settings by using Azure Blueprint
Secure data and applications
Configure security for storage
- configure access control for storage accounts
- configure key management for storage accounts
- configure Azure AD authentication for Azure Storage
- configure Azure AD Domain Services authentication for Azure Files
- create and manage Shared Access Signatures (SAS)
o create a shared access policy for a blob or blob container
- configure Storage Service Encryption
- configure Azure Defender for Storage
Configure security for databases
- enable database authentication
- enable database auditing
- configure Azure Defender for SQL
o configure Azure SQL Database Advanced Threat Protection
- implement database encryption
o implement Azure SQL Database Always Encrypted
Configure and manage Key Vault
- manage access to Key Vault
- manage permissions to secrets, certificates, and keys
o configure RBAC usage in Azure Key Vault
- manage certificates
- manage secrets
- configure key rotation
- backup and restore of Key Vault items
- configure Azure Defender for Key Vault
The Virtual Classroom is an online room, where you will join your instructor and fellow classmates in real time. Everything happens live and you can interact freely, discuss, ask questions, and watch your instructor present on a whiteboard, discuss the courseware and slides, work with labs, and review.
Your prereading is available for you in your personal space at readynez.com: My Readynez. Simply log in, find your course and start your preparations.
Your exam voucher is usually included in your virtual training package. When you´re ready to sit your exam, you just book it with the exam provider. You can sit most exams from home or at a local test centre. We’re here to help you with that process.
Yes, you can sit exams from all the major Vendors like Microsoft, Cisco etc from the comfort of your home or office.
Your Readynez Course package includes the exam voucher for Microsoft exams, AWS exams, ISO Exams and almost every other exam.
With Readynez you do any course form the comfort of your home or office. Readynez provides support and best practices for your at-home classroom and you can enjoy learning with minimal impact on your day-to-day life. Plus you'll save the cost and the environmental burden of travelling.
Well, learning is limitless, when you are motivated, but you need the right path to achieve what you want. Readynez consultants have many years of experience customizing learner paths and we can design one for you too. We are always available with help and guidance, and you can reach us on the chat or write us at info@readynez.com.