SC-200 and SC-300 Microsoft Certification Exam Preparation

SC-200: Microsoft Security Operations Analyst - The Microsoft Security Operations Analyst collaborates with organizational stakeholders to secure information technology systems for the organization. Responsibilities include threat management, monitoring, and response by using a variety of security solutions across their environment. The role primarily investigates, responds to, and hunts for threats using Microsoft Azure Sentinel, Azure Defender, Microsoft 365 Defender, and third-party security products.

Exam Topics covered as per syllabus SC-200 exam Certification questions :

Mitigate threats using Microsoft 365 Defender (25-30%)

• Detect, investigate, respond, and remediate threats to the productivity environment by using Microsoft Defender for Office 365

• Detect, investigate, respond, and remediate endpoint threats by using Microsoft Defender for Endpoint

• Detect, investigate, respond, and remediate identity threats

• Manage cross-domain investigations in Microsoft 365 Defender portal

Mitigate threats using Azure Defender (25-30%)

• Design and configure an Azure Defender implementation

• Plan and implement the use of data connectors for ingestion of data sources in Azure Defender

• Manage Azure Defender alert rules

• Configure automation and remediation

• Investigate Azure Defender alerts and incidents

Mitigate threats using Azure Sentinel (40-45%)

• Design and configure an Azure Sentinel workspace

• Plan and Implement the use of Data Connectors for Ingestion of Data Sources in Azure Sentinel

• Manage Azure Sentinel analytics rules

• Configure Security Orchestration Automation and (SOAR) in Azure Sentinel

• Manage Azure Sentinel Incidents

• Use Azure Sentinel workbooks to analyze and interpret data

• Hunt for threats using the Azure Sentinel portal

SC-300: Microsoft Identity and Access Administrator - The Microsoft Identity and Access Administrator designs, implements, and operates an organization’s identity and access management systems by using Azure Active Directory (Azure AD).

Exam Topics covered as per syllabus SC-300 exam Certification questions :

Implement an identity management solution (25-30%)

• Implement initial configuration of Azure Active Directory

• Create, configure, and manage identities

• Implement and manage external identities

• Implement and manage hybrid identity

Implement an authentication and access management solution (25- 30%)

• Plan and implement Azure Multi factor Authentication (MFA)

• Manage user authentication

• Plan, implement, and administer conditional access

• Manage Azure AD Identity Protection

Implement Access Management for Apps (10-15%)

• Plan, implement, and monitor the integration of Enterprise Apps for Single Sign-On (SSO)

• Implement app registrations

Plan and implement an Identity Governance Strategy (25-30%)

• Plan and implement entitlement management

• Plan, implement, and manage access reviews

• Plan and implement privileged access

• Monitor and maintain Azure Active Directory

I have prepared this practice test course for all those candidates who are planning of taking SC-200 and SC-300 exam in near future.

This is an Unofficial course and this course is not affiliated, licensed or trademarked with Microsoft in any way.