Exam AZ-500: Microsoft Azure Security Technologies
Documentation
HomepageOverview
Overview
Candidates for this exam should have subject matter expertise implementing security controls and threat protection, managing identity and access, and protecting data, applications, and networks in cloud and hybrid environments as part of an end-to-end infrastructure.
Responsibilities for an Azure Security Engineer include maintaining the security posture, identifying, and remediating vulnerabilities by using a variety of security tools, implementing threat protection, and responding to security incident escalations.
Azure Security Engineers often serve as part of a larger team dedicated to cloud-based management and security or hybrid environments as part of an end-to-end infrastructure.
A candidate for this exam should have strong skills in scripting and automation; a deep understanding of networking, virtualization, and cloud N-tier architecture; and a strong familiarity with cloud capabilities and products and services for Azure, plus other Microsoft products and services.
Skills Measured
- Manage identity and access (20-25%)
- Implement platform protection (35-40%)
- Manage security operations (15-20%)
- Secure data and applications (30-35%)
Getting Started
Getting Started
-
Exam AZ-500 Skills Outline
-
This Certification Exam Prep session is designed for people experienced with Microsoft Azure who are interested in taking the AZ500 exam. Attendees of this session can expect...
AZ-500 Videos
Learning Paths
Learn how to configure security policies and manage security alerts with the tools and services in Azure.
Levels: Beginner, Intermediate
Roles: Administrator, Security Engineer
Modules
- Security, responsibility, and trust in Azure
- Create security baselines
- Identify security threats with Azure Security Center
- Resolve security threats with Azure Security Center
- Protect your servers and VMs from brute-force and malware attacks with Azure Security Center
- Analyze your Azure infrastructure by using Azure Monitor logs
- Improve incident response with alerting on Azure
- Capture Web Application Logs with App Service Diagnostics Logging
Learn how to work with subscriptions, users, and groups by configuring Microsoft Azure Active Directory for workloads.
Levels: Beginner, Intermediate
Roles: Solutions Architect, Administrator, Security Engineer
Modules
- Security, responsibility, and trust in Azure
- Create an Azure account
- Manage users and groups in Azure Active Directory
- Create Azure users and groups in Azure Active Directory
- Secure your application by using OpenID Connect and Azure AD
- Secure Azure Active Directory users with Multi-Factor Authentication
- Manage device identity with Azure AD join and Enterprise State Roaming
- Allow users to reset their password with Azure Active Directory self-service password reset
- Add custom domain name to Azure Active Directory
Learn how to configure, protect, and isolate your networks in Azure.
Levels: Beginner, Intermediate
Roles: Solutions Architect, Administrator, Security Engineer
Modules
- Security, responsibility, and trust in Azure
- Configure the network for your virtual machines
- Secure and isolate access to Azure resources by using network security groups and service endpoints
- Encrypt network traffic end to end with Azure Application Gateway
- Monitor and troubleshoot your end-to-end Azure network infrastructure by using network monitoring tools
Learn how to secure your Azure apps and associated data with encryption, certificates, and policy.
Levels: Beginner, Intermediate, Advanced
Roles: Solutions Architect, Developer, Security Engineer
Modules
- Microsoft Azure Well-Architected Framework - Security
- Top 5 security items to consider before pushing to production
- Create security baselines
- Manage secrets in your server apps with Azure Key Vault
- Secure an ASP.NET Core web app with the Identity framework
- Control authentication for your APIs with Azure API Management
Learn how to protect and harden your virtual machines in Azure
Levels: Beginner, Intermediate
Roles: Solutions Architect, Administrator, Security Engineer
Modules