The TechInternal Azure Administrator and Security Engineer course will prepare students to implement security controls, threat protection, managing identity and access, protecting data, applications, and networks in a cloud and hybrid environments as part of an end-to-end security infrastructure.

Responsibilities for an Azure Security Engineer include maintaining the security posture,
identifying and remediating vulnerabilities by using a variety of security tools,
implementing threat protection, and responding to security incident escalations.
Azure Security Engineers often serve as part of a larger team dedicated to cloud-based
management and security or hybrid environments as part of an end-to-end
infrastructure.

A candidate for this course should be familiar with scripting and automation, should
have a deep understanding of networking and virtualization. A candidate should also
have a strong familiarity with cloud capabilities, Azure products and services, and other
Microsoft products and services.

 

After completing this bootcamp, students will be able to:

 

• Describe cloud concepts

• Describe core Azure services

• Describe core solutions and management tools on Azure

• Describe general security and network security features

• Describe identity, governance, privacy, and compliance features

• Describe Azure cost management and Service Level Agreements

• Manage Azure identities and governance

• Implement and manage storage

• Deploy and manage Azure compute resources

• Configure and manage virtual networking

• Monitor and back up Azure resources

• Enterprise governance strategies including role-based access control, Azure policies, and resource locks.

• Azure AD infrastructure including users, groups, and multi-factor authentication.

• Azure AD Identity Protection including risk policies, conditional access, and access reviews.

• Azure AD Privileged Identity Management including Azure AD roles and Azure resources.

• Azure AD Connect including authentication methods and on-premises directory synchronization.

• Perimeter security strategies including Azure Firewall.

• Network security strategies including Network Security Groups and Application Security Groups.

• Host security strategies including endpoint protection, remote access management, update management, and disk encryption.

• Container security strategies including Azure Container Instances, Azure Container Registry, and Azure Kubernetes.

• Azure Key Vault including certificates, keys, and secretes.

• Application security strategies including app registration, managed identities, and service endpoints.

• Storage security strategies including shared access signatures, blob retention policies, and Azure Files authentication.

• Database security strategies including authentication, data classification, dynamic data masking, and always encrypted.

• Azure Monitor including connected sources, log analytics, and alerts.

• Azure Security Center including policies, recommendations, and just in time virtual machine access.

• Azure Sentinel including workbooks, incidents, and playbooks.