Cloud

SC-100: Microsoft Cybersecurity Architect

Advanced

14h

By: Kieran Tross

Overview

The SC-100 course includes an in-depth exploration of Zero Trust principles, security governance, and risk management, along with the integration of Microsoft’s security ecosystem, including Microsoft Defender for Cloud, Entra ID, Microsoft Sentinel, and Microsoft Purview. Additionally, the course emphasizes making real-world architectural decisions that align security initiatives with overarching business objectives.

This comprehensive course is designed to provide you with the knowledge and practical skills necessary to become a Microsoft Certified Cybersecurity Architect Expert by successfully passing the exam. Throughout the course, you will learn how to design and evaluate cybersecurity strategies across key areas such as identity, access, data, applications, and infrastructure.

Modules

1. Designing Security Solutions for Infrastructure

1.1 Introduction to SC-10011 min

1.2 What is Microsoft Defender for Cloud9 min

1.3 Walkthrough of Microsoft Defender for Cloud8 min

1.4 What is the Azure Security Benchmark6 min

1.5 What Are Azure Management Groups8 min

1.6 How to Create an Azure Management Group5 min

1.7 What is Regulatory Compliance in Defender for Cloud6 min

1.8 How to Assign Compliance Standards in Defender for Cloud5 min

1.9 Email Notification in Defender for Cloud4 min

1.10 What is Defender for Cloud Governance Rules5 min

1.11 Defender for Cloud Workflow Automation5 min

1.12 How to Set Up Defender for Cloud Workflow Automation10 min

1.13 Microsoft Secure Score8 min

1.14 Posture Management Process7 min

1.15 Securing Endpoints and Servers8 min

2. Detection, Identity Basics & Zero-Trust Roles

2.1 Detection & Response (XDR, SIEM)3 min

2.2 What is Microsoft Entra ID6 min

2.3 Core Identity Types in Microsoft Entra ID6 min

2.4 Microsoft Entra Roles in a Zero Trust Architecture6 min

2.5 Microsoft Entra ID vs. On-Premises Active Directory6 min

2.6 Microsoft Entra Identity Protection6 min

2.7 Role-Based Access Control (RBAC)5 min

2.8 What is B2B Collaboration in Microsoft Entra ID5 min

2.9 Managing Guest Access and Policies in Microsoft Entra ID6 min

2.10 Looking at CIS Benchmarks5 min

2.11 Lifecycle Management Provisioning and Deprovisioning6 min

3. Entitlement & Access Lifecycle Management

3.1 Entitlement Management & Access Reviews in Microsoft Entra5 min

3.2 Walkthrough of Access Reviews (Microsoft Entra)11 min

3.3 Access Packages Grouping Apps, Groups, and Resources4 min

3.4 Request Workflows and Access Expiration4 min

3.5 MyAccess Portal for End-User Self-Service13 min

3.6 Microsoft Entra Workload Identities4 min

3.7 Managed Identities (System-Assigned vs. User-Assigned)4 min

3.8 Protect and Govern Service Principals & Managed Identities4 min

3.9 Microsoft Log Analytics Workspace6 min

3.10 How to Create a Log Analytics Workspace12 min

3.11 Managing Access to Your Log Analytics Workspace5 min

4. Sentinel Deployment & Automation Foundations

4.1 Microsoft Sentinel4 min

4.2 How to Set Up Microsoft Sentinel13 min

4.3 Best Practices for Deploying Microsoft Sentinel11 min

4.4 Automation in Incident Response3 min

4.5 Microsoft Sentinel Blades Explained5 min

4.6 What Are Sentinel Playbooks7 min

4.7 Assign Microsoft Sentinel RBAC8 min

4.8 Microsoft Sentinel Data Connectors17 min

4.9 Microsoft Sentinel Azure Activity17 min

4.10 Microsoft Sentinel Analytics Rules13 min

4.11 Create Automation Rule in Microsoft Sentinel5 min

4.12 Microsoft Sentinel Workbooks3 min

5. Cloud-Native Security Integrations & Network Controls

5.1 Using Microsoft Defender for Cloud with Sentinel7 min

5.2 Integrate Microsoft Sentinel with Defender for Cloud7 min

5.3 What is Azure Traffic Manager9 min

5.4 What Are Application Security Groups6 min

5.5 Threat Hunting & Incident Handling14 min

5.6 Designing Identity Solutions for Cloud & Hybrid Environments5 min

5.7 Design Conditional Access Policies7 min

5.8 Conditional Access and Zero Trust5 min

5.9 Old Way of Using Microsoft Entra Identity Protection6 min

5.10 Review Conditional Access Policy Templates8 min

5.11 Set Up a Conditional Access Policy from Scratch15 min

5.12 When to Apply Policy Templates3 min

6. Advanced Conditional Access & Privileged Identity Management

6.1 How to Structure Policy Tiers for Zero Trust Enforcement4 min

6.2 Applying Authentication Context for Granular Control5 min

6.3 Configure Authentication Strength (MFA, FIDO2)17 min

6.4 Secure B2B Access with Conditional Access9 min

6.5 What is Privileged Identity Management (PIM)5 min

6.6 How to Deploy Microsoft Entra Privileged Identity Management (PIM)8 min

6.7 What Are Role-Assignable Groups3 min

6.8 What Are PIM Role Settings4 min

6.9 How to Configure PIM Role Settings14 min

6.10 How to Assign Roles in PIM9 min

6.11 How to View Audit History in Microsoft Entra Privileged Identity Management (PIM)5 min

6.12 Review Conditional Access Policies with PIM9 min

7. Designing Solutions Aligned with Compliance and Best Practices

7.1 Resiliency and Risk Management8 min

7.2 Regulatory Compliance and Standards6 min

7.3 Overview of Microsoft Purview8 min

7.4 How to Create Azure Management Groups and RBAC11 min

7.5 What is Azure Policy10 min

7.6 Zero Trust and Azure Policies8 min

7.7 How to Deploy an Azure Policy14 min

7.8 How to Create a Custom Azure Policy13 min

7.9 How to Deploy Azure Policy Initiatives7 min

7.10 Review Azure Policy Compliant Resources5 min

7.11 Cybersecurity Reference Architectures & Frameworks8 min

7.12 Zero Trust Conditional Access Policy5 min

8. Securing Applications

8.1 Securing Applications in the Cloud7 min

8.2 What is Microsoft 365 Admin Center9 min

8.3 Securing Microsoft 365 Environments7 min

8.4 Microsoft Cloud App Security10 min

8.5 Microsoft Copilot for Microsoft 365 Services13 min

8.6 Walkthrough Microsoft 365 Admin Center10 min

9. Data Protection & Encryption

9.1 Introduction to Organizational Data Protection6 min

9.2 Data Encryption Concepts and Implementation8 min

9.3 Key Management with Azure Key Vault7 min

9.4 What is Azure Storage Encryption7 min

9.5 How to Create a Storage Account15 min

9.6 How to Enable Storage Account Authorization Through Entra10 min

9.7 Azure Storage Account – Access Keys4 min

9.8 Azure Storage Account – Shared Access Signature13 min

9.9 How to Manage Disk Encryption8 min

9.10 What Are Azure SQL Databases9 min

9.11 How to Create an Azure SQL Database9 min

9.12 Setup Microsoft Entra Authentication4 min

9.13 How to Setup Auditing for Azure SQL Database10 min

9.14 Using Azure Policies with Azure SQL Database13 min

10. Data Governance & Classification

10.1 Microsoft Purview – Data Discovery, Classification, Protection, and Monitoring8 min

10.2 Purview Information Protection11 min

10.3 Data Discovery & Classification with Microsoft Purview6 min

10.4 Using Microsoft Purview for Discovery & Classification12 min

10.5 Securing Data with Microsoft Purview & Sentinel5 min

10.6 Best Practices for Organizational Data Security4 min

Ready to Elevate Your Team's Learning?

Talk with our sales team to see how StormWind can transform the way your organization trains and grows.

CONTACT SALES