Microsoft Cyber Security Architect (SC-100)

Before attending this course, students must have:

• Advanced experience and knowledge in identity and access, platform protection, security operations, securing data and securing applications.
• Experience with hybrid and cloud implementations.

Target audience

This course is for experienced cloud security engineers who have taken a previous certification in the security, compliance and identity portfolio. Specifically, students should have advanced experience and knowledge in a wide range of security engineering areas, including identity and access, platform protection, security operations, securing data, and securing applications. They should also have experience with hybrid and cloud implementations. Beginning students should instead take the course SC-900: Microsoft Security, Compliance, and Identity Fundamentals.

• Design a Zero Trust strategy and architecture
• Evaluate Governance Risk Compliance (GRC) technical strategies and security operations strategies
• Design security for infrastructure
• Design a strategy for data and applications

Learning path 1 - Design solutions that align with security best practices and priorities

You learn how to use critical Microsoft security best practices to improve an organizations security posture, apply Zero Trust principles, and minimize risk from emerging attacks. Frameworks discussed include the Cloud Adoption Framework (CAF), Well-Architected Framework (WAF), and Microsoft Cybersecurity Reference Architecture (MCRA).

Modules

• Introduction to Zero Trust and best practice frameworks
• Design security solutions that align with the Cloud Adoption Framework (CAF) and Well-Architected Framework (WAF)
• Design solutions that align with the Microsoft Cybersecurity Reference Architecture (MCRA) and Microsoft cloud security benchmark (MCSB)
• Design a resiliency strategy for ransomware and other attacks based on Microsoft Security Best Practices
• Case study: Design solutions that align with security best practices and priorities

Learning path 2 - Design security operations, identity, and compliance capabilities

You'll learn how to interpret and translate regulatory requirements into technical solutions. You'll also learn how to use capabilities found in Microsoft Purview, Microsoft Priva, and Defender for Cloud for compliance.

Modules

• Design solutions for regulatory compliance
• Design solutions for identity and access management
• Design solutions for securing privileged access
• Design solutions for security operations
• Case study: Design security operations, identity, and compliance capabilities

Learning path 3 - Design security solutions for applications and data

Learn how to design solutions to secure data and applications, including: Microsoft 365, application development, existing application portfolios, data discovery, and classification with Microsoft Purview and data security for Azure workloads.

Modules

• Design solutions for securing Microsoft 365
• Design solutions for securing applications
• Design solutions for securing an organization's data
• Case study: Design security solutions for applications and data

Learning path 4 - Design security solutions for infrastructure

You learn how to design solutions for infrastructure security. These infrastructure solutions include specifying requirements for different cloud models, designing solutions for posture management in hybrid and multicloud environments, and securing endpoints.

Modules

• Specify requirements for securing SaaS, PaaS, and IaaS services
• Design solutions for security posture management in hybrid and multicloud environments
• Design solutions for securing server and client endpoints
• Design solutions for network security
• Case study: Design security solutions for infrastructure