Login     Signup
   info@zetlantechnologies.com        +91-8680961847

Microsoft Azure Security Technologies

Az-500:Azure security engineer, you implement, manage, and monitor security for resources in Azure, multi-cloud, and hybrid environments as part of an end-to-end infrastructure. You recommend security components and configurations to protect the following: Identity and access, Data, Applications, Networks.

Your responsibilities as an Azure security engineer include: Managing the security posture, Identifying and remediating vulnerabilities, Performing threat modelling, Implementing threat protection.

1. Manage Microsoft Entra Identities

  • Secure Microsoft Entra users
  • Secure Microsoft Entra groups
  • Recommend when to use external identities
  • Secure external identities
  • Implement Microsoft Entra ID Protection

  • Configure Microsoft Entra Verified ID
  • Implement multi-factor authentication (MFA)
  • Implement passwordless authentication
  • Implement password protection
  • Implement single sign-on (SSO)
  • Integrate single sign on (SSO) and identity providers
  • Recommend and enforce modern authentication protocols

  • Configure Azure role permissions for management groups, subscriptions, resource groups, and resources
  • Assign Microsoft Entra built-in roles
  • Assign Azure built-in roles
  • Create and assign custom roles, including Azure roles and Microsoft Entra roles
  • Implement and manage Microsoft Entra Permissions Management
  • Configure Microsoft Entra Privileged Identity Management
  • Configure role management and access reviews in Microsoft Entra
  • Implement Conditional Access policies

  • Manage access to enterprise applications in Microsoft Entra ID, including OAuth permission grants
  • Manage Microsoft Entra app registrations
  • Configure app registration permission scopes
  • Manage app registration permission consent
  • Manage and use service principals
  • Manage managed identities for Azure resources
  • Recommend when to use and configure an Microsoft Entra Application Proxy, including Authentication

  • Plan and implement Network Security Groups (NSGs) and Application Security Groups (ASGs)
  • Plan and implement user-defined routes (UDRs)
  • Plan and implement Virtual Network peering or VPN gateway
  • Plan and implement Virtual WAN, including secured virtual hub
  • Secure VPN connectivity, including point-to-site and site-to-site
  • Implement encryption over ExpressRoute
  • Configure firewall settings on PaaS resources
  • Monitor network security by using Network Watcher, including NSG flow logging

  • Plan and implement virtual network Service Endpoints
  • Plan and implement Private Endpoints
  • Plan and implement Private Link services
  • Plan and implement network integration for Azure App Service and Azure Functions
  • Plan and implement network security configurations for an App Service Environment (ASE)
  • Plan and implement network security configurations for an Azure SQL Managed Instance

  • Plan and implement Transport Layer Security (TLS) to applications, including Azure App Service and API Management
  • Plan, implement, and manage an Azure Firewall, including Azure Firewall Manager and firewall policies
  • Plan and implement an Azure Application Gateway
  • Plan and implement an Azure Front Door, including Content Delivery Network (CDN)
  • Plan and implement a Web Application Firewall (WAF)
  • Recommend when to use Azure DDoS Protection Standard

  • Plan and implement remote access to public endpoints, including Azure Bastion and just-in-time (JIT) virtual machine (VM) access
  • Configure network isolation for Azure Kubernetes Service (AKS)
  • Secure and monitor AKS
  • Configure authentication for AKS
  • Configure security monitoring for Azure Container Instances (ACIs)
  • Configure security monitoring for Azure Container Apps (ACAs)
  • Manage access to Azure Container Registry (ACR)
  • Configure disk encryption, including Azure Disk Encryption (ADE), encryption as host, and confidential disk encryption
  • Recommend security configurations for Azure API Management

  • Configure access control for storage accounts
  • Manage life cycle for storage account access keys
  • Select and configure an appropriate method for access to Azure Files
  • Select and configure an appropriate method for access to Azure Blob Storage
  • Select and configure an appropriate method for access to Azure Tables
  • Select and configure an appropriate method for access to Azure Queues
  • Select and configure appropriate methods for protecting against data security threats, including soft delete, backups, versioning, and immutable storage
  • Configure Bring your own key (BYOK)
  • Enable double encryption at the Azure Storage infrastructure level

  • Enable Microsoft Entra database authentication
  • Enable database auditing
  • Identify use cases for the Microsoft Purview governance portal
  • Implement data classification of sensitive information by using the Microsoft Purview governance portal
  • Plan and implement dynamic masking
  • Implement Transparent Database Encryption (TDE)
  • Recommend when to use Azure SQL Database Always Encrypted

  • Create, assign, and interpret security policies and initiatives in Azure Policy
  • Configure security settings by using Azure Blueprints
  • Deploy secure infrastructures by using a landing zone
  • Create and configure an Azure Key Vault
  • Recommend when to use a dedicated Hardware Security Module (HSM)
  • Configure access to Key Vault, including vault access policies and Azure Role Based Access Control
  • Manage certificates, secrets, and keys
  • Configure key rotation
  • Configure backup and recovery of certificates, secrets, and keys

  • Identify and remediate security risks by using the Microsoft Defender for Cloud Secure Score and Inventory
  • Assess compliance against security frameworks and Microsoft Defender for Cloud
  • Add industry and regulatory standards to Microsoft Defender for Cloud
  • Add custom initiatives to Microsoft Defender for Cloud
  • Connect hybrid cloud and multi-cloud environments to Microsoft Defender for Cloud
  • Identify and monitor external assets by using Microsoft Defender External Attack Surface Management

  • Enable workload protection services in Microsoft Defender for Cloud, including Microsoft Defender for Storage, Databases, Containers, App Service, Key Vault, Resource Manager, and DNS
  • Configure Microsoft Defender for Servers
  • Configure Microsoft Defender for Azure SQL Database
  • Manage and respond to security alerts in Microsoft Defender for Cloud
  • Configure workflow automation by using Microsoft Defender for Cloud
  • Evaluate vulnerability scans from Microsoft Defender for Server

  • Monitor security events by using Azure Monitor
  • Configure data connectors in Microsoft Sentinel
  • Create and customize analytics rules in Microsoft Sentinel
  • Evaluate alerts and incidents in Microsoft Sentinel
  • Configure automation in Microsoft Sentinel


Fees Structure : 15500 INR / 185 USD
Total No of Class : 98 Video Class
Class Duration : 85:30 Working Hours
Download Feature : Download Avalable
Technical Support : Call / Whatsapp : +91 8680961847
Working Hours : Monday to Firday 9 AM to 6 PM
Payment Mode : Credit Card / Debit Card / NetBanking / Wallet (Gpay/Phonepay/Paytm/WhatsApp Pay)

Brochure       Buy Now       Sample Demo

Fees Structure : 30000 INR / 360 USD
Class Duration : 75 Days
Class Recording : Live Class Recording available
Class Time : Monday to Firday 1.5 hours per day / Weekend 3 Hours per day
Technical Support : Call / Whatsapp : +91 8680961847
Working Hours : Monday to Firday 9 AM to 6 PM
Payment Mode : Credit Card / Debit Card / NetBanking / Wallet (Gpay/Phonepay/Paytm/WhatsApp Pay)

Download Brochure       Pay Online

Information Technologies

Why People Like us!

For over a decade, we have been on a mission: helping everyone grow up in IT Industry. Today, we are asking that you join us.

Read More

More Info

About Us Contact Us Privacy Policy Terms & Condition Refund Policy FAQs & Help

Account

My Account Course Details Shopping Cart Wishlist Order History Payment Details

Contact

Address: Chennai, Tamilnadu, India

Email: info@zetlantechnologies.com

Phone: +91 8680961847

Payment Accepted

Zetlan Technologies, All right reserved.