Microsoft AZ-500 Azure Security Engineer Associate | 2021
Цена: $19.99
*** LAUNCHING OFFER: GET THIS COURSE FOR 9.99$ USING THIS CODE: 8C2F4ECA047BA0CC346E***
IT certifications are important credentials that can boost your value, your salary, and your employment opportunities. Microsoft AZ-500 Azure Security Engineer Associate enables you to design and implement a secure infrastructure on Azure Platform. Through an understanding of security best practices and industry security requirements, this individual designs, develops and manages a secure infrastructure leveraging Azure security technologies.
Этот курс содержит 75 Самостоятельно изучите PRINCE2 Agile Guide® и изучите его подробно 3 practice exams created by Azure certified professionals that cover all aspects included in the official exam guide:
Управление идентификацией и доступом (30-35%)
Управление удостоверениями Azure Active Directory
· configure security for service principals
· manage Azure AD directory groups
· manage Azure AD users
· manage administrative units
· configure password writeback
· configure authentication methods including password hash and Pass Through
· Authentication (ПТА), OAuth, and passwordless
· transfer Azure subscriptions between Azure AD tenants
Настроить безопасный доступ с помощью Azure AD
· monitor privileged access for Azure AD Privileged Identity Management (PIM)
· configure Access Reviews
· configure PIM
· implement Conditional Access policies including Multi-Factor Authentication (МИД)
· configure Azure AD identity protection
Управление доступом к приложениям
· create App Registration
· configure App Registration permission scopes
· manage App Registration permission consent
· manage API access to Azure subscriptions and resources
Управление контролем доступа
· configure subscription and resource permissions
· configure resource group permissions
· configure custom RBAC roles
· identify the appropriate role
· apply the principle of least privilege
· interpret permissions
· check access
Реализовать защиту платформы (15-20%)
Реализуйте расширенную сетевую безопасность
· secure the connectivity of virtual networks (VPN authentication, Express Route
· encryption)
· configure Network Security Groups (ГЯП) and Application Security Groups (ASGs)
· create and configure Azure Firewall
· implement Azure Firewall Manager
· configure Azure Front Door service as an Application Gateway
· configure a Web Application Firewall (WAF) on Azure Application Gateway
· configure Azure Bastion
· configure a firewall on a storage account, Azure SQL, Key Vault, or App Service
· implement Service Endpoints
· implement DDoS protection
Настроить повышенную безопасность для вычислений
· configure endpoint protection
· configure and monitor system updates for VMs
· configure authentication for Azure Container Registry
· configure security for different types of containers
· implement vulnerability management
· configure isolation for AKS
· configure security for container registry
· implement Azure Disk Encryption
· configure authentication and security for Azure App Service
· configure SSL/TLS certs
· configure authentication for Azure Kubernetes Service
· configure automatic updates
Управляйте операциями безопасности (25-30%)
Мониторинг безопасности с помощью Azure Monitor
· create and customize alerts
· monitor security logs by using Azure Monitor
· configure diagnostic logging and log retention
· Monitor security by using Azure Security Center
· evaluate vulnerability scans from Azure Security Center
· configure Just in Time VM access by using Azure Security Center
· configure centralized policy management by using Azure Security Center
· configure compliance policies and evaluate for compliance by using Azure Security
· Center
· configure workflow automation by using Azure Security Center
Мониторинг безопасности с помощью Azure Sentinel
· create and customize alerts
· configure data sources to Azure Sentinel
· evaluate results from Azure Sentinel
· configure a playbook by using Azure Sentinel
Настроить политики безопасности
· configure security settings by using Azure Policy
· configure security settings by using Azure Blueprint
Безопасные данные и приложения (20-25%)
Настроить безопасность для хранилища
· configure access control for storage accounts
· configure key management for storage accounts
· configure Azure AD authentication for Azure Storage
· configure Azure AD Domain Services authentication for Azure Files
· create and manage Shared Access Signatures (SAS)
· create a shared access policy for a blob or blob container
· configure Storage Service Encryption
· configure Azure Defender for Storage
Настроить безопасность для баз данных
· enable database authentication
· enable database auditing
· configure Azure Defender for SQL
· configure Azure SQL Database Advanced Threat Protection
· implement database encryption
o implement Azure SQL Database Always Encrypted
Настройка и управление Key Vault
· manage access to Key Vault
· manage permissions to secrets, сертификаты, and keys
· configure RBAC usage in Azure Key Vault
· manage certificates
· manage secrets
· configure key rotation
· backup and restore of Key Vault items
· configure Azure Defender for Key Vault
Этот практический тест will help you prepare and pass the real official exam test environment. Questions include:
-
Answers with detailed explanation.
-
Reference links to official and unofficial documentation.
-
Illustrations to prepare for the exam.
Join us and get ready to pass!! 🙂
Оставьте ответ
Вы должны авторизоваться или же регистр добавить новый комментарий .