MEAPSA

Configure and manage threat protection by using Microsoft Defender for Cloud

This module focuses on configuring and managing security monitoring and automation solutions using Azure Monitor and Microsoft Sentinel, enabling organizations to proactively identify and respond to security incidents in their cloud environment.

Administrator

Security Engineer

Azure

Log Analytics

Monitor

Module Objectives

By the end of this module, participants will be able to:

Utilize Azure Monitor for comprehensive monitoring of cloud security events.
Aggregate diverse security data efficiently with data connectors in Microsoft Sentinel.
Detect threats using customized analytics rules in Microsoft Sentinel.
Assess and automate incident responses in Microsoft Sentinel for enhanced security management.

Units

Introduction min
Enable workload protection services in Microsoft Defender for Cloud, including Microsoft Defender for Storage, Databases, Containers, App Service, Key Vault, Resource Manager, and DNS min
Configure Microsoft Defender for Servers min
Configure Microsoft Defender for Azure SQL Database min
Manage and respond to security alerts in Microsoft Defender for Cloud min
Configure workflow automation by using Microsoft Defender for Cloud min
Evaluate vulnerability scans from Microsoft Defender for Server min
Knowledge check min
Summary min

Prerequisites

None