Course Outline
Module 1: Manage Identity and Access
This module covers Azure Active Directory, Azure Identity Protection, Enterprise Governance, Azure AD PIM, and Hybrid Identity.
Lessons
- Azure Active Directory
- Azure Identity Protection
- Enterprise Governance
- Azure AD Privileged Identity Management
- Hybrid Identity
Lab : Role-Based Access Control
Lab : Azure Policy
Lab : Resource Manager Locks
Lab : MFA, Conditional Access and AAD Identity Protection
Lab : Azure AD Privileged Identity Management
Lab : Implement Directory Synchronization
After completing this module, students will be able to:
- Implement enterprise governance strategies including role-based access control, Azure policies, and resource locks.
- Implement an Azure AD infrastructure including users, groups, and multi-factor authentication.
- Implement Azure AD Identity Protection including risk policies, conditional access, and access reviews.
- Implement Azure AD Privileged Identity Management including Azure AD roles and Azure resources.
- Implement Azure AD Connect including authentication methods and on-premises directory synchronization.
Module 2: Implement Platform Protection
This module covers perimeter, network, host, and container security.
Lessons
- Perimeter Security
- Network Security
- Host Security
- Container Security
Lab : Network Security Groups and Application Security Groups
Lab : Azure Firewall
Lab : Configuring and Securing ACR and AKS
After completing this module, students will be able to:
- Implement perimeter security strategies including Azure Firewall.
- Implement network security strategies including Network Security Groups and Application Security Groups.
- Implement host security strategies including endpoint protection, remote access management, update management, and disk encryption.
- Implement container security strategies including Azure Container Instances, Azure Container Registry, and Azure Kubernetes.
Module 3: Secure Data and Applications
This module covers Azure Key Vault, application security, storage security, and SQL database security.
Lessons
- Azure Key Vault
- Application Security
- Storage Security
- SQL Database Security
Lab : Key Vault (Implementing Secure Data by setting up Always Encrypted)
Lab : Securing Azure SQL Database
Lab : Service Endpoints and Securing Storage
After completing this module, students will be able to:
- Implement Azure Key Vault including certificates, keys, and secretes.
- Implement application security strategies including app registration, managed identities, and service endpoints.
- Implement storage security strategies including shared access signatures, blob retention policies, and Azure Files authentication.
- Implement database security strategies including authentication, data classification, dynamic data masking, and always encrypted.
Module 4: Manage Security Operations
This module covers Azure Monitor, Azure Security Center, and Azure Sentinel.
Lessons
- Azure Monitor
- Azure Security Center
- Azure Sentinel
Lab : Azure Monitor
Lab : Azure Security Center
Lab : Azure Sentinel
After completing this module, students will be able to:
- Implement Azure Monitor including connected sources, log analytics, and alerts.
- Implement Azure Security Center including policies, recommendations, and just in time virtual machine access.
- Implement Azure Sentinel including workbooks, incidents, and playbooks.
Requirements
Successful learners will have prior knowledge and understanding of:
- Security best practices and industry security requirements such as defense in depth, least privileged access, role-based access control, multi-factor authentication, shared responsibility, and zero trust model.
- Be familiar with security protocols such as Virtual Private Networks (VPN), Internet Security Protocol (IPSec), Secure Socket Layer (SSL), disk and data encryption methods.
- Have some experience deploying Azure workloads. This course does not cover the basics of Azure administration, instead the course content builds on that knowledge by adding security specific information.
- Have experience with Windows and Linux operating systems and scripting languages. Course labs may use PowerShell and the CLI.
Testimonials
Good overview over the topic and practical exercises on all major items.
Christine Abele, INIT GmbH
The course, Trainer
Novat Adam - Goerge Ngaiza, Tanzania Revenue Authority
The hands-on activities.
Goerge Ngaiza, Tanzania Revenue Authority
The big amount of topics and knowledge.
Christine Abele, INIT GmbH
It was always OK to ask questions and to expand on a topic. The trainer had the knowledge and was very helpful and forthcoming to explain additional questions.
Christine Abele, INIT GmbH
I've got to try out resources that I've never used before.
Daniel - Christine Abele, INIT GmbH
He is very knowledgeable and is able to explain everything he is asked.
Christine Abele, INIT GmbH
Excellent notes and knowledge on topic.
Christine Abele, INIT GmbH
I enjoyed the whole course. The content, pace and balance between practical demos and theory was spot on!
Christine Abele, INIT GmbH
The practical part and the side explanations that trainer provided in order for us to understand better the topics and how can be applied for use cases we were interested in
Continental Automotive Romania SRL
I enjoyed the relaxed mood. Also there was a very good balance between theoretical presentation and practical side.
Calin Berariu - Continental Automotive Romania SRL
Exercises and practical applications
Doru Marian Aldea Ungurean - Continental Automotive Romania SRL
The exercises , examples and practical application
Doru Marian Aldea ungurean - Continental Automotive Romania SRL
The practical part, I was able to perform exercises and to test the Microsoft Azure features
Alex Bela - Continental Automotive Romania SRL
It was really useful seeing the full pipeline from start to finish, it led to a better understanding of how to use the technology which you wouldn't get by just focusing on a few different parts out of context.
Scott Fisher - Nicola Hurst, Derivco
I enjoyed that we were able to interact with the technologies themselves. Still, as mentioned above, I wish we received a little more autonomy than following the instructions to a tee.
Nicola Hurst, Derivco
Gave some good insight into kubernetes
Adam Braidwood - Nicola Hurst, Derivco
the train on a topic then do practical work to reinforce the subject
Derivco IOM
Hands on training
Derivco IOM
Dawid is a really good at what he does, he makes something very complicated seem like a stroll in the park.
Dirk Nagel - Derivco IOM
The hand-on part was really good. I would just give students a headsup to have 2 screens (as I started with a laptop only) - as you have to follow and do it yourself.
Theresa Conradie
The lab materials and hands on exercise is very useful to get a better understanding of the key concepts
Mohammad Khan, UNESCAP (Financial Resources Management Section)
The pace was really good. I never felt behind, and never really went ahead of the trainer. The overall structure was quite good apart from the improvements mentioned above. Also, very clean explanation of the topics.
Edina Kiss, Accenture Industrial SS
It was overall nice. Funny and knowledgeable trainer, explaining what actually matters.
Edina Kiss, Accenture Industrial SS
The details and the presentation style.
Cristian Mititean - Edina Kiss, Accenture Industrial SS
Interactive, a lot of exercises
Edina Kiss, Accenture Industrial SS
The Exercises
Khaled Altawallbeh - Edina Kiss, Accenture Industrial SS
Trainer engagement to keep the group as active as possible.
EY Global Services (Poland) Sp. z o.o.
Jestem pod mega wrażeniem stylu prowadzenia szkolenia przez Daniela - w grupie z dużą rozbieżnością wiedzy, wszyscy uczestnicy bez problemu poradzili sobie z każdym zadaniem dzieki bardzo dobrze użytkowo przekazaniej wiedzy. Mam wrażenie, że trener zna odpowiedzi na wszystkie pytania - nie pozostawił pytania bez odpowiedzi. Co podobalo mi sie najbardziej? To, że mieiśmy okazję robić Labs i ćwiczyć. Uważam, że jest to najlepszy sposób nauki - kursant może 'dotknąć' narzędzia, sprawdzić jak działa i czuje się pewniej w tym co robi. Dodatkowo Daniel zaciekawił mnie szkoleniem tak, że na pewno będę chciała drążyć temat.
EY Global Services (Poland) Sp. z o.o.
Daniel ma bardzo dużą wiedzę popartą doświadczneniem. Podczas szkolenia potrafił świetnie zobrazowań niektóre zagadnienia przytaczając bardzo realne przykłady. To było bardzo istotne i zdecydowanie lepsze od recytowania tylko regułek i definicji.
Przemysław Kormański - EY Global Services (Poland) Sp. z o.o.
Niektóre ćwiczenia laboratoryjne.
Rafał Mikulak, Uniwersytet Szczeciński
Assimilable form of classes
Marek - Rafał Mikulak, Uniwersytet Szczeciński
A lot of exercises and chances to test different features. Good introduction to Azure AI applications.
EY GDS
Exercises & hands-on labs!
EY GDS
Examples, relaxed atmosphere, ...
Marek - Rafał Mikulak, Uniwersytet Szczeciński
Dawid is a great trainer, very patient with the group