Chapter 11: Accessing the Online Practice Resources | Microsoft Cybersecurity Architect Exam Ref SC-100

Book Overview & Buying
Table Of Contents

Microsoft Cybersecurity Architect Exam Ref SC-100 - Second Edition

By : Dwayne Natwick, Graham Gold, Abu Zobayer

Buy this Book

Microsoft Cybersecurity Architect Exam Ref SC-100

By: Dwayne Natwick, Graham Gold, Abu Zobayer

Buy this Book

Overview of this book

This Second Edition of Microsoft Cybersecurity Architect Exam Ref SC-100 is a comprehensive guide that will help cybersecurity professionals design and evaluate the cybersecurity architecture of Microsoft cloud services. Packed with practice questions, mock exams, interactive flashcards, and invaluable exam tips, this comprehensive resource gives you everything you need to conquer the SC-100 exam with confidence. This book will take you through designing a strategy for a cybersecurity architecture and evaluating the governance, risk, and compliance (GRC) of the architecture of both cloud-only and hybrid infrastructures. You'll discover how to implement zero trust principles, enhance security operations, and elevate your organization's security posture. By the end of this book, you'll be fully equipped to plan, design, and assess cybersecurity frameworks for Microsoft cloud environments—and pass the SC-100 exam with flying colors. Ready to take your cybersecurity expertise to the next level? This guide is your key to success.

Preface

Who This Book Is For

What This Book Covers

How to Get the Most Out of This Book

Online Practice Resources

Download the Color Images

Conventions Used

Get in Touch

Share Your Thoughts

Download a Free PDF Copy of This Book

Free Chapter

Chapter 1: Cybersecurity in the Cloud

Making the Most of This Book – Your Certification and Beyond

What Is Cybersecurity?

Evolution of Cybersecurity from On-Premises to the Cloud

How Cybersecurity Architecture Can Protect Against These Threats

Defense in Depth: A Real-Life Example

Additional Example: Okta

Summary

Exam Readiness Drill – Chapter Review Section

Chapter 2: Build an Overall Security Strategy and Architecture

Identifying the Integration Points in an Architecture by Using the Microsoft Cybersecurity Reference Architectures

Translating Business Goals into Security Requirements

Translating Security Requirements into Technical Capabilities

Designing Security for a Resiliency Strategy

Integrating a Hybrid or Multi-Tenant Environment into a Security Strategy

Developing a Technical and Governance Strategy for Traffic Filtering and Segmentation

Summary

Exam Readiness Drill – Chapter Review Section

Chapter 3: Design a Security Operations Strategy

Designing a Logging and Auditing Strategy to Support Security Operations, Including Microsoft Purview Audit

Developing Security Operations to Support a Hybrid or Multi-Cloud Environment

Designing a strategy for SIEM and SOAR

Evaluating Security Workflows

Evaluating a Security Operations Strategy for the Incident Management Life Cycle

Evaluating a Security Operations Strategy to Share Technical Threat Intelligence

Leveraging Artificial Intelligence to Enhance Security Operations

Summary

Exam Readiness Drill – Chapter Review Section

Chapter 4: Design an Identity Security Strategy

Zero Trust for Identity and Access Management

Designing a Strategy for Access to Cloud Resources

Recommending an Identity Store

Recommending an Authentication and Authorization Strategy

Designing a Strategy for CA

Designing a Strategy for CAE

Designing a Strategy for Role Assignment and Delegation

Designing a Security Strategy for Privileged Role Access

Designing a Security Strategy for Privileged Activities

Case study – Designing a Zero-Trust Architecture

Summary

Exam Readiness Drill – Chapter Review Section

Chapter 5: Design a Regulatory Compliance Strategy

Interpreting Compliance Requirements and Translating Them into Specific Technical Capabilities

Evaluating Infrastructure Compliance by Using Microsoft Defender for Cloud

Interpreting Compliance Scores and Recommending Actions to Resolve Issues or Improve Security

Designing an Implementation of Azure Policy

Designing for Data Residency Requirements

Translating Privacy Requirements into Requirements for Security Solutions

Case Study – Designing for Regulatory Compliance

Summary

Exam Readiness Drill – Chapter Review Section

Chapter 6: Evaluate Security Posture and Recommend Technical Strategies to Manage Risk

Evaluating the Security Posture Using Benchmarks

Evaluating the Security Posture Using Microsoft Defender for Cloud

Evaluating the Security Posture by Using Secure Score

Evaluating the Security Posture of Cloud Workloads

Designing Security for an Azure Landing Zone

Interpreting Technical Threat Intelligence and Recommending Risk Mitigations

Recommending Security Capabilities or Controls to Mitigate Identified Risks

Evaluating the Security of Internet Assets with Microsoft Defender EASM

Case Study – Evaluating the Security Posture

Summary

Exam Readiness Drill – Chapter Review Section

Chapter 7: Design a Strategy for Securing Server and Client Endpoints

Planning and Implementing a Security Strategy across Teams

Specifying Security Baselines for Server and Client Endpoints

Specifying Security Requirements for Servers, Including Multiple Platforms and Operating Systems

Specifying Security Requirements for Mobile Devices and Clients, Including Endpoint Protection, Hardening, and Configuration

Evaluating Windows LAPS Solutions

Specifying requirements to Secure AD DS

Designing a Strategy to Manage Secrets, Keys, and Certificates

Designing a Strategy for Secure Remote Access

Understanding Security Operations Frameworks, Processes, and Procedures

Case Study – Designing a Secure Architecture for Endpoints

Summary

Exam Readiness Drill – Chapter Review Section

Chapter 8: Design a Strategy for Securing SaaS, PaaS, and IaaS

Specifying Security Baselines for SaaS, PaaS, and IaaS Services

Specifying Security Requirements for IoT Devices and Connected Systems

Evaluating Solutions for Securing OT and Industrial Control Systems (ICSs) by Using Microsoft Defender for IoT

Specifying Security Requirements for Data Workloads, Including SQL, Azure SQL Database, Azure Synapse, and Azure Cosmos DB

Specifying Security Requirements for Storage Workloads, Including Azure Storage

Specifying Security Requirements for Web Workloads, Including Azure App Service

Specifying Security Requirements for Containers

Specifying Security Requirements for Container Orchestration

Evaluating Solutions That Include Azure AI Services Security

Case Study – Security Requirements for IaaS, PaaS, and SaaS

Summary

Exam Readiness Drill – Chapter Review Section

Chapter 9: Specify Security Requirements for Applications

Specifying Priorities for Mitigating Threats to Applications

Specifying a Security Standard for Onboarding a New Application

Designing a Security Solution for API Management

Case Study – Security Requirements for Applications

Summary

Exam Readiness Drill – Chapter Review Section

Chapter 10: Design a Strategy for Securing Data

Specifying Priorities for Mitigating Threats to Data

Designing a Strategy to Identify and Protect Sensitive Data

Specifying an Encryption Standard for Data at Rest and in Motion

Case Study – Designing a Strategy to Secure Data

Summary

Exam Readiness Drill – Chapter Review Section

Chapter 11: Accessing the Online Practice Resources

How to Access These Materials

Troubleshooting Tips

Back to the Book

Why Subscribe?

Other Books You May Enjoy

Share Your Thoughts

Download a Free PDF Copy of This Book

Microsoft Cybersecurity Architect Exam Ref SC-100 - Second Edition

By : Dwayne Natwick, Graham Gold, Abu Zobayer

Microsoft Cybersecurity Architect Exam Ref SC-100

By: Dwayne Natwick, Graham Gold, Abu Zobayer

Overview of this book

Accessing the Online Practice Resources

Confirmation

Buy this book with your credits?

Submit Your Feedback

Create a Free Account To Continue Reading

Sign in to activate your 7-day free access