Cloud and AI Platform
Migrate and Modernize Your Estate
Intermediate
Defender for Cloud
Microsoft SentinelProactive Security
This course provides a comprehensive overview of proactive security strategies for Azure environments, focusing on Zero Trust principles, secure landing zone design, and the security pillar of the Azure Well-Architected Framework. Participants will learn to implement and operationalize Azure-native security services such as Microsoft Defender for Cloud, Microsoft Sentinel, firewall and network security controls, and Security Exposure Management. Through practical scenarios, the course also covers securing cloud migrations, continuous threat monitoring, and designing robust business continuity and disaster recovery strategies to ensure resilient and secure Azure workloads.
5 hours(Suggested: 2 days, 2.5h/day)TechnicalProject ReadyHands-on Labs
MS Course ID: 00739
Last Updated: Jul 1, 2025
Course Syllabus
1
Modules
• Introduction to Proactive Security
• Overview of Proactive Security and its importance.
• Key objectives and expected outcomes of the workshop.
• Zero Trust Principles
• Introduction to Zero Trust security model.
• Implementing Zero Trust principles in your organization.
• Azure Landing Zone
• Understanding the foundation and architecture design.
• Security in ALZ
• Azure Security
• Overview of Azure security features and capabilities.
• Best practices for securing Azure environments.
• Firewall and Network Security
• Implementing firewall and network security measures.
• Best practices for protecting network infrastructure.
• Cloud Adoption Security Assessment
• Security Assessment
• Regulatory Compliance
90 mins
Lecture
2
Interactive Simulated Lab Experience
• Lab 1: Deploy and configure Azure Firewall using the Azure portal
• Lab 2: Create an application gateway with a Web Application Firewall using the Azure portal
• Lab 3: Enabling Microsoft Defender for Cloud
• Lab 4: Configure network access to a VM by using a network security group
• Lab 5: Managing Network Security Groups
• Lab 6: Filter network traffic with a network security group using the Azure portal
• Lab 7: Log network traffic to and from a virtual machine using the Azure portal
60 mins
Lab
3
Modules
• Security Pillar in the Well-Architected Framework
• Understanding the security pillar and its principles.
• Implementing best practices for secure architecture.
• Implementing Microsoft Defender for Cloud
• Securing migrations with Defender for Cloud
• Implementing Microsoft Sentinel
• Setting up and configuring Microsoft Sentinel for security monitoring.
• Integrating Sentinel with other security tools
• Microsoft Security Exposure Management Overview
• Understanding security exposure management.
• Tools and techniques for managing security risks.
• Business Continuity and Disaster Recovery
90 mins
Lecture
4
Interactive Simulated Lab Experience
• Lab 8: Cloud Workload Protection with Microsoft Defender for Cloud
• Lab 9: Managing Defender for Cloud security policies
• Lab 10: Investigating incidents with Microsoft Sentinel
• Lab 11: Advanced Threat Protection and response with Microsoft Sentinel
• Lab 12: Security Copilot (Optional)
60 mins
Lab
What You'll Learn
Understand core concepts and best practices
Hands-on experience with real-world scenarios
Learn from certified Microsoft experts
Prepare for relevant certifications
Access to lab environments
Post-training support and resources
Course Details
- Duration
- 5 hours
- Level
- Intermediate
- Role
- Technical
- Course Type
- Project Ready
- Course Stage
- Available
- Hands-on Labs
- Yes
- Labs Platform
- StepUp