*Travel Upgrade: ONLY $1,250; includes airfare/lodging/transportation/meals-breakfast & lunch and onsite Pearson VUE Test Center! - SARASOTA!
The Microsoft Security Operations Analyst Associate (MCA) is 6-day instructor-led certification boot camp focuses on the fundamentals of security, compliance, and identity (SCI) across cloud-based and related Microsoft services. The camp teaches students how to investigate, responds to, and hunts for threats using Microsoft Azure Sentinel, Azure Defender, Microsoft 365 Defender and third-party security products.
Our training model blends knowledge and certification prep into one solution. Interact face-to-face with Microsoft Certified Trainers (MCT) either at our Florida Training Center - OR, attend the same instructor-led LIVE camp ONLINE! Note: additional hours required each evening for self-study of materials and practice exams in preparation for exams. All boot camps will also include:
- Microsoft Official Courseware (dMOC) and materials (practice exams/test simulators)
- Microsoft Study Labs and Simulations
- (2) Official Exam vouchers - plus (1) retake voucher per exam (if needed)
SC-900 Microsoft Security, Compliance and Identity Fundamentals
SC-200 Microsoft Security Operations Analyst
While attending this course students have the option of taking any, or all exams (SC-200/SC-900) to achieve the Microsoft Certified Security Operations Analyst Associate (and Foundations) certifications. This hands on, instructor led live camp focuses on the real world responsibilities of an Microsoft Security Operations Analyst covering the information needed for the certification exams which can be administered while attending!
What You'll Learn
- Describe basic concepts of security, compliance and identity
- Describe the concepts and capabilities of Microsoft identity and access management solutions
- Describe the capabilities of Microsoft security solutions
- Describe the compliance management capabilities in Microsoft
- Explain how Microsoft Defender for Endpoint can remediate risks in your environment
- Create a Microsoft Defender for Endpoint environment
- Configure Attack Surface Reduction rules on Windows 10 devices
- Perform actions on a device using Microsoft Defender for Endpoint
- Investigate domains and IP addresses in Microsoft Defender for Endpoint
- Investigate user accounts in Microsoft Defender for Endpoint
- Configure alert settings in Microsoft Defender for Endpoint
- Explain how the threat landscape is evolving
- Conduct advanced hunting in Microsoft 365 Defender
- Manage incidents in Microsoft 365 Defender
- Explain how Microsoft Defender for Identity can remediate risks in your environment
- Investigate DLP alerts in Microsoft Cloud App Security
- Explain the types of actions you can take on an insider risk management case
- Configure auto-provisioning in Azure Defender
- Remediate alerts in Azure Defender
- Construct KQL statements
- Filter searches based on event time, severity, domain and other relevant data using KQL
- Extract data from unstructured string fields using KQL
- Manage an Azure Sentinel workspace
- Use KQL to access the watchlist in Azure Sentinel
- Manage threat indicators in Azure Sentinel
- Explain the Common Event Format and Syslog connector differences in Azure Sentinel
- Connect Azure Windows Virtual Machines to Azure Sentinel
- Configure Log Analytics agent to collect Sysmon events
- Create new analytics rules and queries using the analytics rule wizard
- Create a playbook to automate an incident response
- Use queries to hunt for threats
- Observe threats over time with livestream
*Request Detailed Syllabus
Related Links: Microsoft Certified: Security, Compliance and Identity Fundamentals
Related Links: Microsoft Certified: Security Operations Analyst Associate
- Course Number MCA.SOA
- Course Length 6 days
- Course Fee $4,495.00
- Delivery Format vILT (Instructor Led; Virtual LIVE Online; Remote Training)
- Course Topic Boot Camp
- Vendor Microsoft
- Technology Azure
Register for course: MCA.SOA
"*" indicates required fields