Muutke küpsiste eelistusi

Exam Ref SC-900 Microsoft Security, Compliance, and Identity Fundamentals [Pehme köide]

4.06/5 (31 hinnangut Goodreads-ist)
, , ,
  • Formaat: Paperback / softback, 224 pages, kõrgus x laius x paksus: 230x186x10 mm, kaal: 480 g
  • Sari: Exam Ref
  • Ilmumisaeg: 16-Feb-2022
  • Kirjastus: Addison Wesley
  • ISBN-10: 013756810X
  • ISBN-13: 9780137568109
Teised raamatud teemal:
Exam Ref SC-900 Microsoft Security, Compliance, and Identity FundamentalsSuurem pilt
  • Formaat: Paperback / softback, 224 pages, kõrgus x laius x paksus: 230x186x10 mm, kaal: 480 g
  • Sari: Exam Ref
  • Ilmumisaeg: 16-Feb-2022
  • Kirjastus: Addison Wesley
  • ISBN-10: 013756810X
  • ISBN-13: 9780137568109
Teised raamatud teemal:
Püsilink: https://www.kriso.ee/db/9780137568109.html
Märksõnad:

Prepare for Microsoft Exam SC-900 and help demonstrate your real-world knowledge of the fundamentals of security, compliance, and identity (SCI) across cloud-based and related Microsoft services. Designed for business stakeholders, new and existing IT professionals, functional consultants, and students, this Exam Ref focuses on the critical thinking and decision-making acumen needed for success at the Microsoft Certified: Security, Compliance, and Identity Fundamentals level.

 

Focus on the expertise measured by these objectives:

• Describe the concepts of security, compliance, and identity

• Describe the capabilities of Microsoft identity and access management solutions

• Describe the capabilities of Microsoft security solutions

• Describe the capabilities of Microsoft compliance solutions

 

This Microsoft Exam Ref:

• Organizes its coverage by exam objectives

• Features strategic, what-if scenarios to challenge you

• Assumes you are a business user, stakeholder, consultant, professional, or student who wants to create holistic, end-to-end solutions with Microsoft security, compliance, and identity technologies

 

About the Exam

Exam SC-900 focuses on knowledge needed to describe: security and compliance concepts and methods; identity concepts; Azure AD identity services/types, authentication, access management, identity protection, and governance; Azure, Azure Sentinel, and Microsoft 365 security management; Microsoft 365 Defender threat protection and Intune endpoint security; Microsoft 365 compliance management, information protection, governance, insider risk, eDiscovery, and audit capabilities; and Azure resource governance.

 

About Microsoft Certification

Passing this exam fulfills your requirements for the Microsoft Certified: Security, Compliance, and Identity Fundamentals certification, helping to demonstrate your understanding of the fundamentals of security, compliance, and identity (SCI) across cloud-based and related Microsoft services. With this certification, you can move on to earn more advanced related Associate-level role-based certifications.

 

See full details at: microsoft.com/learn
Introduction xv
Organization of this book xv
Preparing for the exam xv
Microsoft certification xvi
Errata, updates & book support xvi
Stay in touch xvii
Chapter 1 Describe the concepts of security, compliance, and identity
1(24)
Skill 1-1 Security and compliance concepts and methodologies
1(11)
Zero-trust methodology
1(4)
Shared responsibility model
5(2)
Defense-in-depth
7(2)
Common threats
9(1)
Encryption
10(2)
Cloud Adoption Framework
12(1)
Skill 1-2 Identity concepts
12(13)
Identity as the primary security perimeter
13(1)
What is authentication?
13(2)
What is authorization
15(2)
What is Active Directory?
17(1)
What are federation services and identity providers?
18(2)
Common identity attacks
20(1)
Thought experiment
21(1)
Thought experiment answers
22(1)
Chapter summary
22(3)
Chapter 2 Microsoft Identity and Access Management Solutions
25(118)
Skill 2-1 Define the basic identity services and identity types of Azure AD
25(16)
Describe what Azure Active Directory is
25(3)
Describe what hybrid identity is
28(5)
Describe Azure AD identities (users, devices, groups, and service principals/applications)
33(6)
Describe the different external identity types (guest users)
39(2)
Skill 2-2 Describe the authentication capabilities of Azure AD
41(13)
Describe the different authentication methods
41(1)
Describe password protection and management capabilities
42(2)
Describe self-service password reset
44(4)
Describe multifactor authentication
48(2)
Describe Windows Hello for Business and passwordless credentials
50(4)
Skill 2-3 Describe the access management capabilities of Azure AD
54(9)
Describe what conditional access is
54(1)
Describe uses and benefits of conditional access
55(3)
Describe the benefits of Azure AD roles
58(5)
Skill 2-4 Describe the identity protection and governance capabilities of Azure AD
63(10)
Describe what identity governance is
63(1)
Describe what entitlement management and access reviews are
64(3)
Describe the capabilities of PIM
67(1)
Describe Azure AD Identity Protection
68(2)
Thought experiment
70(1)
Thought experiment answers
71(1)
Chapter summary
71(2)
Chapter 3 Capabilities of Microsoft security solutions
73(1)
Skill 3-1 Basic security capabilities in Azure
73(11)
Azure network security groups
74(3)
Azure DDoS protection
77(1)
Azure Firewall
78(2)
Azure Bastion
80(1)
Web Application Firewall
81(2)
Data encryption in Azure
83(1)
Skill 3-2 Security Management capabilities in Azure
84(10)
Azure Security Center
85(2)
Azure Secure Score
87(1)
Cloud workload protection with Azure Defender
88(3)
Cloud security posture management capabilities
91(2)
Security baselines for Azure
93(1)
Skill 3-3 Security capabilities in Azure Sentinel
94(271)
What is Security Information and Event Management (SIEM)?
95(3)
What is security orchestration, automation, and response (SOAR)?
98(1)
What is extended detection and response (XDR)?
99(1)
Azure Sentinel
99(266)
Skill 3-4 Threat protection with Microsoft
365
Defender
115(250)
Describe Microsoft
365
Defender services
115(1)
Describe Microsoft Defender for Identity
116(1)
Describe Microsoft Defender for Office 365
117(2)
Describe Microsoft Defender for Endpoint
119(4)
Describe Microsoft Cloud App Security
123(1)
Skill 3-5 Security management capabilities of Microsoft 365
124(10)
Describe the Microsoft
365
Security Center
125(1)
Describe how to use Microsoft Secure Score
126(2)
Explore security reports and dashboards
128(1)
Describe incidents and incident management capabilities
129(5)
Skill 3-6 Endpoint security with Microsoft Intune
134(9)
What is Intune?
134(2)
Endpoint security with Intune and Microsoft Endpoint Manager admin center
136(2)
Thought experiment
138(1)
Thought experiment answers
139(1)
Chapter summary
140(3)
Chapter 4 Describe the capabilities of Microsoft compliance solutions
143(41)
Skill 4-1 Common compliance needs
143(10)
Microsoft Compliance Center
144(4)
Microsoft Compliance Manager
148(3)
Compliance Score
151(2)
Skill 4-2 Information protection and governance
153(9)
Data classification capabilities
153(2)
Content Explorer and Activity Explorer
155(1)
Sensitivity labels
156(2)
Retention policies and labels
158(1)
Records management
159(1)
Data loss prevention
160(2)
Skill 4-3 Insider risk
162(6)
Insider risk management
163(1)
Communication compliance
164(2)
Information barriers
166(1)
Privileged access management
167(1)
Customer Lockbox
167(1)
Skill 4-4 eDiscovery
168(6)
Microsoft
365
eDiscovery
169(1)
Content Search
169(1)
Core eDiscovery Workflow
170(3)
Advanced eDiscovery workflow
173(1)
Skill 4-5 Auditing
174(3)
Microsoft 365 audit capabilities
174(2)
Advanced Audit
176(1)
Skill 4-6 Resource governance
177(7)
Azure resource locks
178(1)
Azure Blueprints
178(1)
Azure Policy
179(1)
Cloud Adoption Framework
180(3)
Thought experiment
183(1)
Thought experiment answers
184(1)
Chapter summary 184(3)
Index 187
YURI DIOGENES, MSC

Yuri has a master of science in cybersecurity intelligence and forensics investigation (Utica College) and is the principal program manager of Microsoft's CxE ASC Team, where he primarily helps customers onboard and deploy Azure Security Center and Azure Defender as part of their security operations/incident response. Yuri has been working for Microsoft since 2006 in different positions, including five years as senior support escalation engineer for the CSS Forefront Edge team, and from 2011 to 2017 for the content development team, where he also helped create the Azure Security Center content experience since its GA launch in 2016. Yuri has published a total of 26 books, mostly about information security and Microsoft technologies. Yuri also holds an MBA and many IT/Security industry certifications, such as CISSP, E|CND, E|CEH, E|CSA, E|CHFI, CompTIA Security+, CySA+, Cloud Essentials Certified, Mobility+, Network+, CASP, CyberSec First Responder, MCSE, and MCTS. You can follow Yuri on Twitter at @yuridiogenes.







NICHOLAS DICOLA

Nicholas is a partner director at Microsoft on the Cloud Security Customer Experience Engineering (CxE) team, where he leads this global team helping customers with deployments of Azure Security products. He has a master of business administration with a concentration in information systems and various industry certifications such as CISSP and CEH. You can follow Nicholas on Twitter at @mastersecjedi.







KEVIN MCKINNERNEY

Kevin is a senior program manager and technical lead on the Microsoft Information Protection Customer Experience Engineering (CxE) Team, where he provides best practices and deployment guidance to help customers quickly onboard Microsoft information protection products and Azure Purview. Kevin has been working at Microsoft since 2011 in various roles, including senior support escalation engineer on the Microsoft CSS Security team and as a senior premier field engineer, focusing on Microsoft security and information protection. Kevin has authored dozens of blogs and videos related to information protection and has spoken at many technical conferences, including RSAC, Microsoft Ignite, Microsoft MVP Summits, and the Microsoft Security Engineering Advisory Council. Prior to starting at Microsoft, he worked for IBM as a Microsoft support manager and spent eight years as an information systems technician while on active duty in the United States Navy. Kevin received a bachelor of science in business management from the University of Phoenix and holds many certifications, including CISSP and GCIH. You can follow Kevin on Twitter @KemckinnMSFT and GitHub (https://github.com/ kemckinnmsft).

 

MARK MOROWCZYNSKI

Mark Morowczynski (@markmorow) is a principal program manager on the customer success team in the Microsoft Identity division. He spends most of his time working with customers on their deployments of Azure Active Directory. Previously, he was a premier field engineer supporting Active Directory, Active Directory Federation Services, and Windows Client performance. He was also one of the founders of the AskPFEPlat blog. He's spoken at various industry events such as Black Hat 2019, Defcon Blue Team Village, GrayHat, several BSides, Microsoft Ignite, Microsoft Inspire, Microsoft MVP Summits, The Experts Conference (TEC), The Cloud Identity Summit, SANs Security Summits, and TechMentor. He can be frequently found on Twitter as @markmorow, where he argues about baseball and sometimes makes funny gifs.