Azure Security — AZ-500 + SC-100 Track
Identity → Network → Workload → Data. The full Azure security stack — built for defenders, architects and AZ-500 / SC-100 candidates.
Who Is This For
- Cloud security engineers responsible for Azure
- SOC analysts working on Azure / M365
- Architects designing Azure landing zones with security controls
- AZ-500 / SC-100 candidates
Prerequisites
- AZ-104-level Azure or equivalent admin experience
- Basic security & identity concepts
Full Syllabus — 14 Modules
M 1Azure Security Foundation & Zero Trust
- MS Zero Trust pillars
- Cloud Adoption Framework — Secure
- Shared responsibility
- Azure security baseline
M 2Identity — Entra ID Hardening
- MFA, Conditional Access
- Identity Protection — risk policies
- Privileged Identity Management (PIM)
- Workload identities & managed identities
M 3Governance — Policy, Blueprints, Locks
- Azure Policy authoring
- Initiatives, compliance dashboards
- Resource Locks
- Tagging strategy
M 4Network Security — NSG, ASG, Private Link
- NSG vs ASG, NSG flow logs
- Service Endpoints vs Private Endpoints
- Private Link & private DNS zones
- Service tags
M 5Azure Firewall & Firewall Manager
- Standard, Premium, Basic SKUs
- Network & application rules
- TLS inspection on Premium
- Firewall Manager hub-spoke
M 6App Gateway WAF & Front Door
- WAF v2 policies — managed + custom
- OWASP rule sets
- Bot mitigation
- Front Door Standard / Premium WAF
M 7Defender for Cloud (CSPM + CWP)
- Secure Score, recommendations
- Defender plans — Servers, App Service, Storage, SQL, K8s, Containers
- Just-in-Time VM access
- File Integrity Monitoring
M 8Defender XDR — Endpoint, Identity, Office, Cloud Apps
- Defender for Endpoint (MDE) basics
- Defender for Identity
- Defender for Office 365
- Defender for Cloud Apps (CASB)
M 9Key Vault & Encryption
- Secrets, keys, certificates
- BYOK / HYOK / Managed HSM
- Encryption at rest & in transit
- Customer-managed keys
M 10Data Security & Purview
- SQL Threat Protection
- Storage account hardening
- Purview classification & labels
- DLP for M365 + Azure
M 11Sentinel Integration (preview)
- Why Sentinel for Azure security
- Connectors — Defender, Entra, Azure Activity
- Analytic rules & incidents
- Hand-off to dedicated Sentinel course
M 12Compliance — ISO, PCI, GDPR
- Compliance Manager
- Regulatory baselines
- Evidence collection
- Audit-ready posture
M 13Real-World Architectures
- Secure landing zone design
- Hub-spoke with Azure Firewall + WAF
- Workload identity isolation
- Multi-tenant isolation patterns
M 14Cert Path & Interview Prep
- AZ-500 blueprint walkthrough
- SC-100 architect-level scenarios
- L2 / L3 cloud security interview question bank
What You Get
40 Hours
Live + recorded for AZ-500 + SC-100.
Hands-on Labs
Free-tier Azure — Defender for Cloud, Entra ID, Key Vault, WAF, NSG flow logs.
Real Case Studies
Landing zone, Conditional Access design, JIT, WAF tuning, Defender remediation.
Interview Q&A
L2 / L3 cloud security question bank.
Certificate
Techclick Infosec course completion certificate.
WhatsApp Group
Doubt-clearing batch group with the trainer.
Your Instructor
Trained by working senior cloud and network security engineers with 13+ years of hands-on enterprise experience across Azure, M365 security, identity, hybrid cloud and SIEM.
FAQ
Q 1AZ-104 first?
Recommended. We recap key admin topics where security depends on them.
Q 2Hands-on labs?
Yes — free Azure tier covers most labs. Some Defender plans we walk through in recorded demos.
Q 3AZ-500 vs SC-100?
AZ-500 is engineer-grade; SC-100 is architect-grade. We cover both, with M14 explaining when to take each.
Q 4Duration?
About 40 hours over 5–6 weeks.
Q 5Sentinel covered fully?
Sentinel intro is here; the full SOC track is our dedicated Microsoft Sentinel course.
Defend the Microsoft cloud.
Talk to us about the next batch.