Certification Based

Cybersecurity

SC-200: Microsoft Security Operations Analyst

Intermediate

14h

By: Charles Zacharias

Overview

In this online training course, students will gain the knowledge and skills to mitigate cyberthreats using these technologies. Specifically, you will configure and use Microsoft Sentinel as well as utilize Kusto Query Language (KQL) to perform detection, analysis, and reporting. The course was designed for people who work in a Security Operations job role and helps learners prepare for the exam SC-200: Microsoft Security Operations Analyst.

Exam SC-200: Microsoft Security Operations Analyst

Skills Learned

After completing this online training course, students will be able to:

Mitigate threats using Microsoft 365 Defender
Mitigate threats using MIcrosoft Defender for Cloud
Mitigate threats using Microsoft Sentinel

Modules

1. Topic: Introduction - Class Recordings

1.1 Course Introduction9 min

2. Topic: Defender for Endpoint - Class Recordings

2.1 Defender for Endpoint Overview17 min

2.2 Exploring the Dashboard1h 12m

2.3 Security1h 5m

2.4 Monitoring34 min

3. Topic: M365 Defender - Class Recordings

3.1 M365 Defender Overview24 min

3.2 Incidents and Alerts, Hunting, Vulnerability Management53 min

3.3 Email and Collaboration, Cloud Apps33 min

4. Topic: Working with Defender for Cloud - Class Recordings

4.1 Working with Defender for Cloud39 min

5. Topic: Connecting and Onboarding Assets - Class Recordings

5.1 Enable Auto Provisioning26 min

5.2 Adding a Non-Azure Server13 min

5.3 Adding Linux Machines9 min

5.4 Viewing Security Recommendations8 min

5.5 GCP, Alerts18 min

6. Topic: Alerts and Responses - Class Recordings

6.1 Creating Logic Apps11 min

6.2 Adding a Workflow12 min

6.3 Creating a Suppression Rule10 min

6.4 Exploring Suppressions Rules40 min

7. Topic: Creating Queries Using Kusto Query Language - Class Recordings

7.1 Kusto Query Language Overview18 min

7.2 Kusto Query Language Examples14 min

8. Topic: Basic Configuration - Class Recordings

8.1 Sentinel Overview and Initial Setup15 min

8.2 Permissions, Roles and Log Analytics20 min

8.3 Data Connectors, Watchlists and Threat Intelligence27 min

9. Topic: Logging and Importing - Class Recordings

9.1 Logging Example18 min

10. Topic: Alerts and Investigation - Class Recordings

10.1 Alerts and Investigation Overview11 min

10.2 Exploring Alerts and Investigation19 min

10.3 Syslog28 min

11. Topic: Sentinel Analytics - Class Recordings

11.1 Sentinel Analytics Overview24 min

11.2 Rule Examples21 min

12. Topic: Working with Microsoft Sentinel - Class Recordings

12.1 Threat Response27 min

12.2 Threat Response Setup18 min

12.3 Security Incident Management45 min

13. Topic: Anomaly Detection and Hunting - Class Recordings

13.1 Anomaly Rules6 min

13.2 Threat Hunting Rules26 min

13.3 Hunting Queries21 min

Ready to Elevate Your Team's Learning?

Talk with our sales team to see how StormWind can transform the way your organization trains and grows.

CONTACT SALES