Master Azure security with AZ-500! Learn to manage identity, secure networks, protect data, and handle threats in Azure. Ideal for IT pros aiming for a career in cloud security.
The AZ 500 certification course delves into Microsoft Azure, a dynamic cloud platform offering diverse solutions in computing, analytics, storage, and networking. Tailored for those navigating the cloud landscape, AZ-500 training is pivotal for implementing innovative solutions. Azure is a leading choice for hosting databases in the cloud, providing a robust foundation for scalable and secure applications. Therefore, elevate your skills with the AZ-500 certification program, mastering Azure’s capabilities and contributing to the evolution of cutting-edge cloud technologies.
Eligibility
Graduation
Basic understanding of the IT industry
Basic understanding of Microsoft
Understanding of Virtualization
Fundamental knowledge of Cloud management and building
Manage Identity and Access
Manage Identities in Azure AD
Secure users in Azure AD
Secure directory groups in Azure AD
Recommend when to use external identities
Secure external identities
Implement Azure AD Identity Protection
Manage Authentication by Using Azure AD
Configure Microsoft Entra Verified ID
Implement multi-factor authentication (MFA)
Implement passwordless authentication
Implement password protection
Implement single sign-on (SSO)
Integrate single sign-on (SSO) and identity providers
Recommend and enforce modern authentication protocolsManage Authorization by Using Azure AD
Configure Azure role permissions for management groups, subscriptions, resource groups, and resources
Assign built-in roles in Azure AD
Assign built-in roles in Azure
Create and assign custom roles, including Azure roles and Azure AD roles
Implement and manage Microsoft Entra Permissions Management
Configure Azure AD Privileged Identity Management (PIM)
Configure role management and access reviews by using Microsoft Entra Identity Governance
Implement Conditional Access policiesManage Application Access in Azure AD
Manage access to enterprise applications in Azure AD, including OAuth permission grants
Manage app registrations in Azure AD
Configure app registration permission scopes
Manage app registration permission consent
Manage and use service principles
Manage managed identities for Azure resources
Recommend when to use and configure authentication for an Azure AD Application Proxy
Secure Networking
Plan and Implement Security for Virtual Networks
Plan and implement Network Security Groups (NSGs) and Application Security Groups (ASGs)
Plan and implement user-defined routes (UDRs)
Plan and implement VNET peering or VPN gateway
Plan and implement Virtual WAN, including secured virtual hub
Secure VPN connectivity, including point-to-site and site-to-site
Implement encryption over ExpressRoute
Configure firewall settings on PaaS resources
Monitor network security by using Network Watcher, including NSG flow loggingPlan and Implement Security for Private Access to Azure Resources
Plan and implement virtual network Service Endpoints
Plan and implement Private Endpoints
Plan and implement Private Link services
Plan and implement network integration for Azure App
Service and Azure Functions
Plan and implement network security configurations for an App Service Environment (ASE)
Plan and implement network security configurations for an Azure SQL Managed InstancePlan and Implement Security for Public Access to Azure Resources
Plan and implement TLS to applications, including
Azure App Service and API Management
Plan, implement, and manage an Azure Firewall, including Azure Firewall Manager and firewall policies
Plan and implement an Azure Application Gateway
Plan and implement an Azure Front Door, including
Content Delivery Network (CDN)
Plan and implement a Web Application Firewall (WAF)
Recommend when to use Azure DDoS Protection Standard
Secure, Compute, Storage and Databases
Plan and Implement Advanced Security for Compute
Plan and implement remote access to public endpoints, including Azure Bastion and JIT
Configure network isolation for Azure Kubernetes Service (AKS)
Secure and monitor AKS
Configure authentication for AKS
Configure security monitoring for Azure Container Instances (ACIs)
Configure security monitoring for Azure Container Apps (ACAs)
Manage access to Azure Container Registry (ACR)
Configure disk encryption, including Azure Disk
Encryption (ADE), encryption as host, and confidential disk encryption
Recommend security configurations for Azure API ManagementPlan and Implement Security for Storage
Configure access control for storage accounts
Manage life cycle for storage account access keys
Select and configure an appropriate method for access to Azure Files
Select and configure an appropriate method for access to Azure Blob Storage
Select and configure an appropriate method for access to Azure Tables
Select and configure an appropriate method for access to Azure Queues
Select and configure appropriate methods for protecting against data security threats, including soft delete, backups, versioning, and immutable storage
Configure Bring your own key (BYOK)
Enable double encryption at the Azure Storage infrastructure levelManage Security Posture by Using Microsoft Defender for Cloud
Identify and remediate security risks by using the
Microsoft Defender for Cloud Secure Score and Inventory
Assess compliance against security frameworks and
Microsoft Defender for Cloud
Add industry and regulatory standards to Microsoft
Defender for Cloud
Add custom initiatives to Microsoft Defender for Cloud
Connect hybrid cloud and multi-cloud environments to
Microsoft Defender for CloudConfigure and Manage Threat Protection by Using Microsoft Defender for Cloud
Enable workload protection services in Microsoft
Defender for Cloud, including Microsoft Defender for
Storage, Databases, Containers, App Service, Key Vault,
Resource Manager, and DNS
Configure Microsoft Defender for Servers
Configure Microsoft Defender for Azure SQL Database
Manage and respond to security alerts in Microsoft
Defender for Cloud
Configure workflow automation by using Microsoft
Defender for CloudPlan and Implement Security for Azure SQL Database and Azure SQL Managed Instance
Enable database authentication by using Microsoft Azure Active Directory (Azure AD)
Enable database auditing
Identify use cases for the Microsoft Purview governance portal
Implement data classification of sensitive information by using the Microsoft Purview governance portal
Plan and implement dynamic masking
Implement Transparent Database Encryption (TDE)
Recommend when to use Azure SQL
Manage Security Operations
Plan, Implemented, and Manage Governance for Security
Create, assign, and interpret security policies and initiatives in Azure Policy
Configure security settings by using Azure Blueprint
Deploy secure infrastructures by using a landing zone
Create and configure an Azure Key Vault
Recommend when to use a Dedicated HSM
Configure access to Key Vault, including vault access policies and Azure Role-Based Access Control
Manage certificates, secrets, and keys
Configure key rotation
Configure backup and recovery of certificates, secrets, and keysManage Security Posture by Using Microsoft Defender for Cloud
Identify and remediate security risks by using the Microsoft Defender for Cloud Secure Score and InventoryAssess compliance against security frameworks and
Microsoft Defender for Cloud
Add industry and regulatory standards to Microsoft Defender for Cloud
Add custom initiatives to Microsoft Defender for Cloud
Connect hybrid cloud and multi-cloud environments to
Microsoft Defender for CloudConfigure and Manage Threat Protection by Using Microsoft Defender for Cloud
Enable workload protection services in Microsoft
Defender for Cloud, including Microsoft Defender for
Storage, Databases, Containers, App Service, Key Vault, Resource Manager, and DNS
Configure Microsoft Defender for Servers
Configure Microsoft Defender for Azure SQL Database
Manage and respond to security alerts in Microsoft Defender for Cloud
Configure workflow automation by using Microsoft Defender for CloudConfigure and Manage Security Monitoring and Automation Solutions
Monitor security events by using Azure Monitor
Configure data connectors in Microsoft Sentinel
Create and customize analytics rules in Microsoft Sentinel
Evaluate alerts and incidents in Microsoft Sentinel
Configure automation in Microsoft Sentinel
Evaluate vulnerability scans from Microsoft Defender for Server
Having 12+ years of experience in the IT industry, your favourite mentor, Atul Sharma, is a Network Engineer and the founder of Network Kings who began his IT journey merely through a YouTube channel in 2013 and focussed on his vision to produce Engineers worldwide. He has worked with Aricent, TCS, Apple, and Juniper.
Placement Guarantee / Support
Unlock job opportunities with our placement assistance, job referrals, and interview scheduling.
Practice-based lessons
Immerse yourself in hands-on learning through our practice-based lessons, designed to provide practical skills and real-world insights.
20% discount for other courses
Get a 20% discount on additional courses! Expand your skills and knowledge affordably. Enroll now for more learning opportunities.
Quarterly updates
Our mentors review the course syllabus once in a quarter and once you have a lifetime access you’ll also be able to see those updates
