fbpx
  2. Home
  3. Training
  4. Security, Compliance, and Identity
  5. Microsoft Security Operations Analyst

Training with Iverson classes

Training is not a commodity – all training centres are not the same. Iverson Associates Sdn Bhd is the most established, the most reputable, and the top professional IT training provider in Malaysia. With a large pool of experienced and certified trainers, state-of-the-art facilities, and well-designed courseware, Iverson offers superior training, a more impactful learning experience and highly effective results.

At Iverson, our focus is on providing high-quality IT training to corporate customers, meeting their learning needs and helping them to achieve their training objectives. Iverson has the flexibility to provide training solutions whether for a single individual or the largest corporation in a well-paced or accelerated training programme.

Our courses continue to evolve along with the fast-changing technological advances. Our instructor-led training services are available on a public and a private (in-company) basis. Some of our courses are also available as online, on demand, and hybrid training.

  • Link

SC-200T00 : Microsoft Security Operations Analyst

Course and Certificate TRAINING AND CERTIFICATION
Please let us know your name.
Please let us know your email address.
Invalid Input
Invalid Input
Invalid Input

Overview

Learn how to investigate, respond to, and hunt for threats using Microsoft Azure Sentinel, Azure Defender, and Microsoft 365 Defender. In this course you will learn how to mitigate cyberthreats using these technologies. Specifically, you will configure and use Azure Sentinel as well as utilize Kusto Query Language (KQL) to perform detection, analysis, and reporting. The course was designed for people who work in a Security Operations job role and helps learners prepare for the exam SC-200: Microsoft Security Operations Analyst.

Audience Profile

The Microsoft Security Operations Analyst collaborates with organizational stakeholders to secure information technology systems for the organization. Their goal is to reduce organizational risk by rapidly remediating active attacks in the environment, advising on improvements to threat protection practices, and referring violations of organizational policies to appropriate stakeholders. Responsibilities include threat management, monitoring, and response by using a variety of security solutions across their environment. The role primarily investigates, responds to, and hunts for threats using Microsoft Azure Sentinel, Azure Defender, Microsoft 365 Defender, and third-party security products. Since the Security Operations Analyst consumes the operational output of these tools, they are also a critical stakeholder in the configuration and deployment of these technologies.

Prerequisities

Before attending this course, students must have knowledge of:

  • Basic understanding of Microsoft 365
  • Fundamental understanding of Microsoft security, compliance, and identity products
  • Intermediate understanding of Windows 10
  • Familiarity with Azure services, specifically Azure SQL Database and Azure Storage
  • Familiarity with Azure virtual machines and virtual networking
  • Basic understanding of scripting concepts.

At Course Completion


Course Outline

+- Module 1: Introduction to Microsoft 365 threat protection Click to collapse
+- Module 2: Mitigate incidents using Microsoft 365 Defender Click to collapse
+- Module 3: Protect your identities with Azure AD Identity Protection Click to collapse
+- Module 4: Remediate risks with Microsoft Defender for Office 365 Click to collapse
+- Module 5: Safeguard your environment with Microsoft Defender for Identity Click to collapse
+- Module 6: Secure your cloud apps and services with Microsoft Defender for Cloud Apps Click to collapse
+- Module 7: Respond to data loss prevention alerts using Microsoft 365 Click to collapse
+- Module 8: Manage insider risk in Microsoft Purview Click to collapse
+- Module 9: Investigate threats by using audit features in Microsoft 365 Defender and Microsoft Purview Standard Click to collapse
+- Module 10: Investigate threats using audit in Microsoft 365 Defender and Microsoft Purview (Premium) Click to collapse
+- Module 11: Investigate threats with Content search in Microsoft Purview Click to collapse
+- Module 12: Protect against threats with Microsoft Defender for Endpoint Click to collapse
+- Module 13: Deploy the Microsoft Defender for Endpoint environment Click to collapse
+- Module 14: Implement Windows security enhancements with Microsoft Defender for Endpoint Click to collapse
+- Module 15: Perform device investigations in Microsoft Defender for Endpoint Click to collapse
+- Module 16: Perform actions on a device using Microsoft Defender for Endpoint Click to collapse
+- Module 17: Perform evidence and entities investigations using Microsoft Defender for Endpoint Click to collapse
+- Module 18: Configure and manage automation using Microsoft Defender for Endpoint Click to collapse
+- Module 19: Configure for alerts and detections in Microsoft Defender for Endpoint Click to collapse
+- Module 20: Utilize Vulnerability Management in Microsoft Defender for Endpoint Click to collapse
+- Module 21: Plan for cloud workload protections using Microsoft Defender for Cloud Click to collapse
+- Module 22: Connect Azure assets to Microsoft Defender for Cloud Click to collapse
+- Module 23: Connect non-Azure resources to Microsoft Defender for Cloud Click to collapse
+- Module 24: Manage your cloud security posture management Click to collapse
+- Module 25: Explain cloud workload protections in Microsoft Defender for Cloud Click to collapse
+- Module 26: Remediate security alerts using Microsoft Defender for Cloud Click to collapse
+- Module 27: Construct KQL statements for Microsoft Sentinel Click to collapse
+- Module 28: Analyze query results using KQL Click to collapse
+- Module 29: Build multi-table statements using KQL Click to collapse
+- Module 30: Work with data in Microsoft Sentinel using Kusto Query Language Click to collapse
+- Module 31: Introduction to Microsoft Sentinel Click to collapse
+- Module 32: Create and manage Microsoft Sentinel workspaces Click to collapse
+- Module 33: Query logs in Microsoft Sentinel Click to collapse
+- Module 34: Use watchlists in Microsoft Sentinel Click to collapse
+- Module 35: Utilize threat intelligence in Microsoft Sentinel Click to collapse
+- Module 36: Connect data to Microsoft Sentinel using data connectors Click to collapse
+- Module 37: Connect Microsoft services to Microsoft Sentinel Click to collapse
+- Module 38: Connect Microsoft 365 Defender to Microsoft Sentinel Click to collapse
+- Module 39: Connect Windows hosts to Microsoft Sentinel Click to collapse
+- Module 40: Connect Common Event Format logs to Microsoft Sentinel Click to collapse
+- Module 41: Connect syslog data sources to Microsoft Sentinel Click to collapse
+- Module 42: Connect threat indicators to Microsoft Sentinel Click to collapse
+- Module 43: Threat detection with Microsoft Sentinel analytics Click to collapse
+- Module 44: Automation in Microsoft Sentinel Click to collapse
+- Module 45: Security incident management in Microsoft Sentinel Click to collapse
+- Module 46: Identify threats with Behavioral Analytics Click to collapse
+- Module 47: Data normalization in Microsoft Sentinel Click to collapse
+- Module 48: Query, visualize, and monitor data in Microsoft Sentinel Click to collapse
+- Module 49: Manage content in Microsoft Sentinel Click to collapse
+- Module 50: Explain threat hunting concepts in Microsoft Sentinel Click to collapse
RM3,000.00(+RM240.00 Tax)
* Training Dates:

* Price excludes Exam

Course Information
EXAM CODE
SC-200
DURATION
4 Days
CERTIFICATION
Microsoft Certified: Security Operations Analyst Associate
Schedule

4-7 Mar 2024

24-27 Jun 2024

9-12 Sep 2024

2-5 Dec 2024
We are using cookies to give you the best experience on our site. By continuing to use our website without changing the settings, you are agreeing to use of cookies.
Ok Decline