Corporate Courses

SC-200: Microsoft Security Operations Analyst

Course Outline

Learn how to investigate, respond to, and hunt for threats using Microsoft Azure Sentinel, Azure Defender, and Microsoft 365 Defender. In this course you will learn how to mitigate cyberthreats using these technologies. Specifically, you will configure and use Azure Sentinel as well as utilize Kusto Query Language (KQL) to perform detection, analysis, and reporting. The course was designed for people who work in a Security Operations job role and helps learners prepare for the exam SC-200: Microsoft Security Operations Analyst.

Duration

4 Days

Location

Online

Prerequisites

SC-900

Course Content

  • Module 1: Mitigate threats using Microsoft Defender for Endpoint
  • Module 2: Mitigate threats using Microsoft 365 Defender
  • Module 3: Mitigate threats using Azure Defender
  • Module 4: Create queries for Azure Sentinel using Kusto Query Language (KQL)
  • Module 5: Configure your Azure Sentinel environment
  • Module 6: Connect logs to Azure Sentinel
  • Module 7: Create detections and perform investigations using Azure Sentinel
  • Module 8: Perform threat hunting in Azure Sentinel

Enquire Now!