Microsoft Security Solutions Capabilities

本课程是 Exam Prep SC-900: Microsoft Certified Security Fundamentals 专项课程的一部分

位教师：Whizlabs Instructor

包含在 Coursera Plus 中

了解更多

3个模块

深入了解一个主题并学习基础知识。

中级等级

推荐体验

1 周完成

在 10 小时一周

灵活的计划

自行安排学习进度

3个模块

深入了解一个主题并学习基础知识。

中级等级

推荐体验

1 周完成

在 10 小时一周

灵活的计划

自行安排学习进度

您将获得的技能

要了解的详细信息

可分享的证书

添加到您的领英档案

了解顶级公司的员工如何掌握热门技能

了解关于 Coursera for Business 的更多信息

Petrobras, TATA, Danone, Capgemini, P&G 和 L'Oreal 的徽标

积累特定领域的专业知识

本课程是 Exam Prep SC-900: Microsoft Certified Security Fundamentals 专项课程专项课程的一部分

在注册此课程时，您还会同时注册此专项课程。

向行业专家学习新概念
获得对主题或工具的基础理解
通过实践项目培养工作相关技能
获得可共享的职业证书

该课程共有3个模块

Welcome to Microsoft Sentinel, Microsoft Defender XDR & Threat Protection, a deep-dive course designed for cloud security engineers, SOC analysts, and IT professionals who want to master Microsoft’s advanced detection, response, and threat protection ecosystem.

This course covers the end-to-end workflow of cloud security operations using Microsoft Sentinel (SIEM & SOAR) and Microsoft Defender XDR. You’ll explore workspace planning, SIEM roles, SOAR automation, threat detection, and hunting queries in Sentinel. You’ll then move into Defender XDR configuration, integration with Sentinel, and best practices for incident response. Finally, you’ll learn about the entire Microsoft Defender product family (Defender for Cloud Apps, Office 365, Identity, and Endpoint) to build a unified threat protection strategy. By the end of this course, you’ll be confident in deploying, configuring, and managing Microsoft Sentinel and Microsoft Defender XDR to detect, investigate, and respond to modern cloud threats. Who Should Take This Course? SOC Analysts and Incident Responders Cloud Security Engineers and Azure Administrators IT Security Professionals looking to implement SIEM + XDR Learners preparing for SC-200 or seeking advanced Microsoft security skills Course Format This course delivers 6–7 hours of expert-led video content, split across four modules. Each module includes demos, configuration guides, and best practices. Knowledge checks and in-video questions are included to help reinforce learning. Course Modules: Module 1: Azure Security Foundations: Networking, Key Vault & Defender Module 2: Microsoft Sentinel: SIEM & SOAR for Cloud Security Operations Module 3: Microsoft Defender XDR: Configuration, Integration & Best Practices

Welcome to Week 1 of this course! We’ll begin with the essential building blocks for securing Azure workloads. You’ll explore Azure networking security, including Azure DDoS Protection, Azure Bastion, and Azure Firewall, to understand how to defend your resources at the network edge. Next, we’ll dive into network segmentation using Azure Virtual Networks, and configure Network Security Groups (NSG) and Application Security Groups (ASG) with hands-on demos. You’ll also explore Azure Key Vault and see how to secure application secrets and configuration data using App Configuration and Key Vault demos. Finally, we’ll introduce Microsoft Defender for Cloud, its Cloud Security Posture Management (CSPM) capabilities, and workload protection features to help you proactively strengthen your cloud security posture.

涵盖的内容

13个视频3篇阅读材料3个作业1个插件

13个视频总计76分钟

Azure DDoS and Bastion Service - Overview4分钟
Azure Firewall3分钟
Network Segmentation with Azure Virtual Networks3分钟
Network Security Groups - Demo2分钟
Applicaiton Security Groups - Demo9分钟
Azure Key Vault - Overview3分钟
Secure App Configuration data by using App Configuration or Azure Key Vault - Demo12分钟
Microsoft Defender for Cloud - Overview5分钟
Microsoft Defender for Cloud - Demo4分钟
Cloud Security Posture Management (CSPM)5分钟
Security policies and initiatives improve the cloud security posture7分钟
Microsoft Defender for Cloud Workload Protection5分钟
Enhanced security features provided by cloud workload protection9分钟

3篇阅读材料总计70分钟

Welcome to the Course30分钟
Azure Security Foundations: Networking, Key Vault & Defender - Course Overview20分钟
Meet and Greet20分钟

3个作业总计130分钟

Azure Core Infrastructure Security Services - Practice Assessment40分钟
Azure Security Management Capabilities - Practice Assessment40分钟
Azure Security Foundations: Networking, Key Vault & Defender - Graded Assessment50分钟

1个插件总计30分钟

Microsoft Sentinel: SIEM & SOAR for Cloud Security Operations 30分钟

Welcome to Week 2! this week, we’ll focus on Microsoft Sentinel and its role as a cloud-native SIEM and SOAR solution. You’ll learn how to plan and deploy workspaces, align Sentinel implementation with Microsoft’s Cloud Adoption Framework (CAF) security design phases, and understand the role of SIEM in modern security operations. We’ll then explore Sentinel’s automation capabilities with SOAR, threat detection, and mitigation features. By the end of this week, we’ll dive into threat hunting, reviewing sample KQL queries and walking through a hands-on demo to see how to proactively hunt for threats in your environment.

涵盖的内容

8个视频1篇阅读材料2个作业

8个视频总计48分钟

What is Microsoft Sentinel?5分钟
Workspace Planning in Microsoft Sentinel5分钟
Aligning security with the CAF design phases7分钟
The Role of SIEM in Security Operations6分钟
Automating Security Tasks with SOAR5分钟
Threat detection and mitigation capabilities in Microsoft Sentinel6分钟
Explore Threat Hunting Queries - Overview4分钟
Explore Threat Hunting Queries - Demo6分钟

1篇阅读材料总计20分钟

Microsoft Sentinel: SIEM & SOAR for Cloud Security Operations - Course Overview20分钟

2个作业总计90分钟

Microsoft Sentinel Capabilities - Practice Assessment40分钟
Microsoft Sentinel: SIEM & SOAR for Cloud Security Operations - Graded Assessment50分钟

Welcome to Week 3! this week focuses on governance and identity protection features of Microsoft Entra ID. You’ll explore Privileged Identity Management (PIM) to enforce just-in-time (JIT) access, conduct access reviews, and automate provisioning/deprovisioning. This week also covers Microsoft Entra ID Protection, showing how to detect and mitigate identity risks with real-time monitoring. By the end of the week, you will be able to Configure MFA and passwordless authentication methods, Design Conditional Access policies for secure access and Implement RBAC effectively at tenant, group, or resource scope.

涵盖的内容

17个视频3篇阅读材料3个作业

17个视频总计89分钟

What is Microsoft Defender XDR?4分钟
Key Benefits of Microsoft Defener XDR4分钟
Microsoft Defender XDR vs. Traditional Security Tools3分钟
Threat Analytics Overview4分钟
Creating Lab Environment - Step by Step7分钟
Connecting Microsoft Defender XDR to Microsoft Sentinel8分钟
Best Practices for Microsoft Defender XDR3分钟
Microsoft Defender Family - Overview5分钟
Microsoft Defender for Cloud Apps5分钟
Microsoft Defender for Office 3655分钟
Defender Vulnerability Management - Overview5分钟
Defender Vulnerability Management - Demo4分钟
Microsoft Defender for Identity6分钟
Microsoft Defender Threat Intelligence (Defender TI)5分钟
Microsoft Defender portal3分钟
Microsoft Defender for Endpoint Overview5分钟
Advanced Features of Defender for Endpoint4分钟

3篇阅读材料总计65分钟

Microsoft Defender XDR: Configuration, Integration & Best Practices - Course Overview25分钟
Specialization: Course 3 Summary20分钟
What's Next + Best Practices20分钟

3个作业总计150分钟

Microsoft Defender XDR - Overview - Practice Assessment50分钟
Threat Protection with Microsoft Defender XDR - Practice Assessment40分钟
Microsoft Defender XDR: Configuration, Integration & Best Practices - Graded Assessment60分钟

获得职业证书

将此证书添加到您的 LinkedIn 个人资料、简历或履历中。在社交媒体和绩效考核中分享。

位教师

Whizlabs Instructor

Whizlabs

132 门课程86,436 名学生

提供方

Whizlabs

从 Cloud Computing 浏览更多内容

状态：免费试用
Microsoft
Cybersecurity Solutions and Microsoft Defender
课程
状态：免费试用
Microsoft
Microsoft Azure Security Tools Specialization
专项课程
状态：免费试用
Whizlabs
Azure: Security Operations Management
课程
状态：免费试用
状态：人工智能技能
Microsoft
Microsoft Cybersecurity Analyst
专业证书

人们为什么选择 Coursera 来帮助自己实现职业发展

Felipe M.

自 2018开始学习的学生

''能够按照自己的速度和节奏学习课程是一次很棒的经历。只要符合自己的时间表和心情，我就可以学习。'

Jennifer J.

自 2020开始学习的学生

''我直接将从课程中学到的概念和技能应用到一个令人兴奋的新工作项目中。'

Larry W.

自 2021开始学习的学生

''如果我的大学不提供我需要的主题课程，Coursera 便是最好的去处之一。'

Chaitanya A.

''学习不仅仅是在工作中做的更好：它远不止于此。Coursera 让我无限制地学习。'

通过 Coursera Plus 开启新生涯

无限制访问 10,000+ 世界一流的课程、实践项目和就业就绪证书课程 - 所有这些都包含在您的订阅中

了解更多

通过在线学位推动您的职业生涯

获取世界一流大学的学位 - 100% 在线

探索学位

加入超过 3400 家选择 Coursera for Business 的全球公司

提升员工的技能，使其在数字经济中脱颖而出

了解更多

常见问题

To access the course materials, assignments and to earn a Certificate, you will need to purchase the Certificate experience when you enroll in a course. You can try a Free Trial instead, or apply for Financial Aid. The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.

When you enroll in the course, you get access to all of the courses in the Specialization, and you earn a certificate when you complete the work. Your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile.

Yes. In select learning programs, you can apply for financial aid or a scholarship if you can’t afford the enrollment fee. If fin aid or scholarship is available for your learning program selection, you’ll find a link to apply on the description page.