OBIETTIVI DEL CORSO

After completing this course, students should be able to:

• Administer user and group access in Microsoft 365.
• Explain and manage Azure Identity Protection.
• Plan and implement Azure AD Connect.
• Manage synchronized user identities.
• Describe cyber-attack threat vectors.
• Explain security solutions for Microsoft 365.
• Use Microsoft Secure Score to evaluate and improve your security posture.
• Plan for and deploy secure mobile devices.
• Implement information rights management.
• Secure messages in Office 365.
• Configure Data Loss Prevention policies.
• Deploy and manage Cloud App Security.
• Create and manage an eDiscovery investigation.
• Manage GDPR data subject requests.
• Explain and use sensitivity labels.

 

PREREQUISITI

Learners should start this course already having the following skills:

Basic conceptual understanding of Microsoft Azure.

Experience with Windows 10 devices.

Experience with Office 365.

Basic understanding of authorization and authentication.

Basic understanding of computer networks.

Working knowledge of managing mobile devices.

STRUTTURA DEL CORSO

Module 1: User and Group Management

Identity and Access Management Concepts

The Zero Trust model

Plan your identity and authentication solution

User accounts and roles

Identity Management

Create and manage user accounts.

Describe and use Microsoft 365 admin roles.

Plan for password policies and authentication.

Describe the concepts of Zero Trust security

Implement multi-factor authentication in Office 365.

Module 2: Identity Synchronization and Protection 

Configure and manage synchronized identities

Password management

Azure AD Identity Protection

Describe authentication options for Microsoft 365.

Explain directory synchronization.

Plan directory synchronization.

Describe and use Azure AD Connect.

Configure Azure AD Connect Prerequisites.

Manage users and groups with directory synchronization.

Describe Active Directory federation.

Enable Azure Identity Protection

Module 3: Access Management

Use Conditional Access to enable MFA

MFA Authentication Pilot (require MFA for specific apps)

MFA Conditional Access (complete an MFA roll out)

Describe the concept of conditional access.

Describe and use conditional access policies.

Plan for device compliance.

Configure conditional users and groups.

Configure role based access control

Module 4: Security in Microsoft 365

Threat vectors and data breaches

Security strategy and principles

Security solutions for Microsoft 365

Secure Score

Module 5: Threat Protection

Exchange Online Protection (EOP)

Office 365 Advanced Threat Protection

Manage Safe Attachments

Manage Safe Links

Azure Advanced Threat Protection

Microsoft Defender Advanced Threat Protection

Module 6: Threat Management

Security dashboard

Threat investigation and response

Azure Sentinel

Advanced Threat Analytics

Module 7: Cloud Application Security

Deploy Cloud Application Security

Use cloud application security information

Explain how to deploy Cloud App Security.

Control your Cloud Apps with Policies.

Use the Cloud App Catalog.

Use the Cloud Discovery dashboard.

Manage cloud app permissions.

Module 8: Mobility

Mobile Application Management (MAM)

Mobile Device Management (MDM)

Deploy mobile device services

Enroll devices to Mobile Device Management

Describe mobile application considerations.

Use Intune to manage mobile applications.

Manage devices with MDM.

Configure Domains for MDM.

Manage Device Security Policies.

Enroll devices to MDM.

Configure a Device Enrollment Manager Role.

Module 9: Information Protection

Information protection concepts

Sensitivity labels

Azure Information Protection (AIP)

Windows Information Protection (WIP)

Module 10: Rights Management and Encryption

Information Rights Management (IRM)

Secure Multipurpose Internet Mail Extension (S-MIME)

Office 365 Message Encryption

Module 11: Data Loss Prevention

Data loss prevention fundamentals

Create a DLP policy

Customize a DLP policy

Create a DLP policy to protect documents

Policy tips

Module 12: Archiving and Retention

Archiving in Microsoft 365

Retention in Microsoft 365

Retention policies in the Microsoft 365 Compliance Center

Archiving and Retention in Exchange

In-place Records Management in SharePoint

Explain how a retention policy functions.

Create a retention policy.

Enable and disable in-place archiving.

Create useful retention tags.

Module 13: Content Search and Investigation

Content Search

Audit Log Investigations

Advanced eDiscovery

Module 14: Compliance in Microsoft 365

Compliance center

Compliance center solutions

Building ethical walls in Exchange Online

Describe what you need to consider for GDPR.

Describe what an ethical wall in Exchange is and how it works.

Explain compliance score.

Explain and use insider risk management