Course

Course Summary
Credit Type:
Course
ACE ID:
MLS-0106
Organization:
Location:
Online
Length:
6 months (101 hours)
Dates Offered:
Credit Recommendation & Competencies
Level Credits (SH) Subject
Lower-Division Baccalaureate 3 Server Administration
Upper-Division Baccalaureate 3 Cloud Security
Upper-Division Baccalaureate 3 Cloud Computing
Upper-Division Baccalaureate 3 Cloud Solutions Architecture
Description

Objective:

The course objective is to earn a professional certificate showcasing job readiness for the Azure security engineer associate role and prepare for the AZ-500: Microsoft Azure Security Technologies certificate exam. Learners will gain expertise in managing identity and access and securing network, compute, storage, and databases, and learn about managing security operations—aligned with the AZ-500 exam requirements.

Azure security engineers are responsible for implementing, managing, and overseeing security measures across Azure, multi-cloud, and hybrid environments to safeguard the entire infrastructure.

Each course in this program combines concepts, practice exercises, and hands-on exercises in Azure, with graded assessments and scenario-based projects that assess understanding.

Learning Outcomes:

  • Use Azure Active Directory to create and manage users, manage authentication, and implement identity protection and governance
  • Secure data by implementing storage security, data sovereignty, database monitoring, encryption, and data masking using tools like Defender for Cloud
  • Implement perimeter, network, host, and container security and services such as Azure Key Vault to secure the platform and applications
  • Manage security operations with Microsoft Defender and use monitoring tools such as Azure Resource Monitor and Azure Monitor Application Insights

General Topics:

  • 1. Secure Access with Azure Active Directory: Explain the features of Azure Active Directory (Azure AD) and Azure AD Domain Services
  • Create and manage users and groups in cloud and hybrid contexts and configure Azure AD administrative units
  • Describe the authentication and password protection methods available in Azure AD and how to configure and implement multifactor authentication
  • Deploy and configure Azure AD Connect to create a hybrid identity solution. 2. Identity Protection and Governance: Explain the features of Azure AD Identity Protection and how to configure Azure ADPIM and work with Azure AD groups and guests
  • Implement and configure Azure policies and RBAC in Azure
  • Enable resource locks and deploy blueprints in Azure. 3. Implement Platform Protection: Review core security concepts and approaches that form part of the defense in depth strategy
  • Implement and configure an Azure Application Gateway to protect your perimeter
  • Configure and deploy the Azure Web Application Firewall. 4. Secure Your Applications: Describe the purpose of Azure Key Vault and its importance in defense in depth strategy
  • Deploy and manage Key Vault certificates, secrets, and keys to secure access to your applications
  • Explain app registration, types of permissions supported and create an Azure AD tenant
  • Configure Microsoft Graph permissions and web app certificates. 5. Secure Your Data at Rest: Deploy shared access signatures (SAS)
  • Enable and monitor database auditing
  • Enable Defender for SQL for advanced threat protection. 6. Manage Security Operations: Configure and monitor metrics and logs in Azure Monitor
  • Manage applications by using Azure Monitor Application Insights
  • Implement, configure, and deploy Microsoft Defender for Cloud. 7. Capstone and Practice Exam (AZ-500): Implement multifactor authentication
  • Create a resource group and a new storage account and provide access to a user
Instruction & Assessment

Instructional Strategies:

  • Audio Visual Materials
  • Case Studies
  • Computer Based Training
  • Discussion
  • Practical Exercises

Methods of Assessment:

  • Quizzes

Minimum Passing Score:

70%
Supplemental Materials