Category: SC-200

Section 7 – Mitigate threats using Microsoft Defender for Cloud – Plan and implement the use of data connectors for ingestion of data sources in Microsoft Defender for Cloud

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 09/04/2023 0 Comments on Section 7 – Mitigate threats using Microsoft Defender for Cloud – Plan and implement the use of data connectors for ingestion of data sources in Microsoft Defender for Cloud
Posted in Azure, Azure ARC, Azure Automation, Defender, Identity, Microsoft Graph, On-premises, SC-200, Security, Study guide

Continuing the journey with Defender for cloud. This time we will see Data source, how to onboard Azure resources and Azure ARC integration. With the exponential rise of cloud services, companies now place a high priority on protecting cloud workloads….

Continue Reading Section 7 – Mitigate threats using Microsoft Defender for Cloud – Plan and implement the use of data connectors for ingestion of data sources in Microsoft Defender for Cloud

Section 6 – Mitigate threats using Microsoft Defender for Cloud – Implement and maintain cloud security posture management and workload protection

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 02/04/2023 0 Comments on Section 6 – Mitigate threats using Microsoft Defender for Cloud – Implement and maintain cloud security posture management and workload protection
Posted in Azure, Azure AD, Defender, Identity, KQL, SC-200, Security

Then we go to Defender for Cloud and starting with the planning part. Let’s get going! Be sure to check the previous chapters, you will need that information to understand to journey that we are on. Plan and configure Microsoft…

Continue Reading Section 6 – Mitigate threats using Microsoft Defender for Cloud – Implement and maintain cloud security posture management and workload protection

Section 5 – Mitigate threats using Microsoft 365 Defender – Manage extended detection and response (XDR) in Microsoft 365 Defender

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 26/03/2023 0 Comments on Section 5 – Mitigate threats using Microsoft 365 Defender – Manage extended detection and response (XDR) in Microsoft 365 Defender
Posted in Azure, Defender, Identity, KQL, SC-200, Security, Study guide

Today we will be discovering XDR with Microsoft 365 Defender. It will be an central hub for many different scenarios. Although you will have interfaces inside Azure portal for Sentinel and Defender for Cloud but you can get those signals…

Continue Reading Section 5 – Mitigate threats using Microsoft 365 Defender – Manage extended detection and response (XDR) in Microsoft 365 Defender

Section 4 – Mitigate identity threats part 2 of 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 05/03/2023 0 Comments on Section 4 – Mitigate identity threats part 2 of 2
Posted in Active Directory, ADFS, Authentication methods, Azure, Azure AD, Certificates, Conditional access, Cross-tenant, Defender, Entra, Hybrid, Identity, On-premises, SC-200, Security, Zero trust

Identity protecting is challenging if you don’t know what you should protect and when you do, you should know how to protect it. In the second part we will be discovering more on Conditional Access as a dynamic boundary in…

Continue Reading Section 4 – Mitigate identity threats part 2 of 2

Section 4 – Mitigate identity threats part 1 of 2

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 26/02/2023 0 Comments on Section 4 – Mitigate identity threats part 1 of 2
Posted in Access Reviews, Azure, Azure AD, Conditional access, Entra, Identity, SC-200, Security

Last part was a blast, let’s see how long this one will be as it’s about Identity! Just like you can see from the picture above, Identity is every where and it could be the same Identity for all the…

Continue Reading Section 4 – Mitigate identity threats part 1 of 2

Section 3 – Mitigate endpoint threats by using Microsoft Defender for Endpoint

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 19/02/2023 0 Comments on Section 3 – Mitigate endpoint threats by using Microsoft Defender for Endpoint
Posted in Azure, Defender, Identity, Intune, SC-200, Security, Study guide

Welcome to the third section of my SC-200 study guide. First the ones that I didn’t have time to include in the last section but will cover them in different order as in my opinion it makes more sense: And…

Continue Reading Section 3 – Mitigate endpoint threats by using Microsoft Defender for Endpoint

Section 2 – Mitigate threats using Microsoft 365 Defender – Mitigate threats to the productivity environment by using Microsoft 365 Defender

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 12/02/2023 0 Comments on Section 2 – Mitigate threats using Microsoft 365 Defender – Mitigate threats to the productivity environment by using Microsoft 365 Defender
Posted in Azure, Data Loss Prevention, Insider risks, Microsoft Purview, SC-200, Study guide

Welcome to the second section of my SC-200 study guide. In this section I will go through the following content: And didn’t have time (space) to include the following: And will be covering them in the next section, not to…

Continue Reading Section 2 – Mitigate threats using Microsoft 365 Defender – Mitigate threats to the productivity environment by using Microsoft 365 Defender

Section 1 – Mitigate threats using Microsoft 365 Defender – Mitigate threats to the productivity environment by using Microsoft 365 Defender

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 05/02/2023 0 Comments on Section 1 – Mitigate threats using Microsoft 365 Defender – Mitigate threats to the productivity environment by using Microsoft 365 Defender
Posted in Azure, Certifications, Defender, SC-200, Security

Welcome to the first part of my SC-200 study guide. In this section I will go through the following content: What benefits you get from Defender for Office 365? How to try out Defender? As an existing Microsoft 365 customer,…

Continue Reading Section 1 – Mitigate threats using Microsoft 365 Defender – Mitigate threats to the productivity environment by using Microsoft 365 Defender

Exam cram series for SC-200 exam

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 27/01/2023 0 Comments on Exam cram series for SC-200 exam
Posted in Azure, Azure AD, Certifications, Hybrid, Identity, Mentoring, Microsoft Sentinel, SC-200, Security, Study guide

Well, finally it’s time for a new part to my study series for Microsoft Security certifications. I have published guides for SC-100 and SC-300 and now it’s times for the “little” ‘sis between. Hopefully you will find this helpful, giving…

Continue Reading Exam cram series for SC-200 exam