CÔNG TY TNHH TRAINOCATE VIỆT NAM
40551A - Microsoft Security Workshop: Enterprise Security Fundamentals

40551A - Microsoft Security Workshop: Enterprise Security Fundamentals

40551A - Microsoft Security Workshop: Enterprise Security Fundamentals

Overview

Duration: 1.0 day

This 1-day Instructor-led security workshop provides insight into security practices to improve the security posture of an organization. The workshop examines the concept of Red team – Blue team security professionals, where one group of security pros--the red team--attacks some part or parts of a company’s security infrastructure, and an opposing group--the blue team--defends against the attack. Both teams work to strengthen a company’s defenses. Since the goal of the two teams is to help the business attain a higher level of security, the security industry is calling this function, the Purple team

This workshop is part of a larger series of Workshops offered by Microsoft on the practice of Security. While it is not required that you have completed any of the other courses in the Security Workshop series before taking this workshop, it is highly recommended that you start with this workshop in the series, Microsoft Security Workshop: Enterprise Security Fundamentals.

Objectives

After completing this course, students will be able to:

  • Describe the current cyber security landscape
  • Describe the assume compromise philosophy
  • Identify factors that contribute to the cost of a breach
  • Distinguish between responsibilities of red teams and blue teams
  • Identify typical objectives of cyber attackers
  • Describe a kill chain carried out by read teams
  • Describe the role, goals, and kill chain activities of the blue team in red team exercises
  • Describe the ways limiting how an attacker can compromise unprivileged accounts.
  • Describe the methods used to restrict lateral movement.
  • Describe how telemetry monitoring is used to detect attacks.
  • Explain the concept of Confidentiality, Integrity, and Availability (CIA) triad.
  • Describe the primary activities that should be included in organization preparations
  • Identify the main principles of developing and maintaining policies.

Content

Module 1: Understanding the cyber-security landscape

In this module, you will learn about the current cybersecurity landscape and learn how adopting the assume compromise philosophy, you can you restrict an attacker’s ability to move laterally between information systems and to restrict their ability to escalate privileges within those systems. The current cyber-security landscape is vast and likely impossible for any one individual to comprehend in its entirety. There are, however, several aspects of that landscape to which those interested in the fundamentals of enterprise security should pay attention.

Lessons

  • Current Cyber-security Landscape
  • Assume Compromise Philosophy

Module 2: Red Team: Penetration, Lateral Movement, Escalation, and Exfiltration

Red team versus blue team exercises involve the simulation of an attack against an organization’s information system. The red team simulates and, in some cases, performs proof of concept steps taken in the attack against the organization’s IT systems. The blue team simulates the response to that attack. This adversarial approach not only allows for the identification of security vulnerabilities in the way that the organization’s IT systems are configured, but also allows members of the organization’s information systems staff to learn how to detect and respond to attacks. In this module you will learn the Practice Red team versus Blue team approach to detecting and responding to security threats.

Lessons

  • Red Team versus Blue Team Exercises
  • The Attackers Objective
  • Red Team Kill Chain

Module 3: Blue Team Detection, Investigation, Response, and Mitigation

In this module you will learn about the Blue Team roles and goals in the attack exercises. You will learn the structure of an attack against an objective (Kill Chain) and the ways limiting how an attacker can compromise unprivileged accounts. You will also learn the methods used to restrict lateral movement that prevent attackers from using a compromised system to attack other systems and how telemetry monitoring is used to detect attacks.

Lessons

  • The Blue Team
  • Blue Team Kill Chain
  • Restricting Privilege Escalation
  • Restrict Lateral Movement
  • Attack Detection

Module 4: Organizational Preparations

There are several ongoing preparations that an organization can take to improve their overall approach to information security. In this module, we will take a closer look at some of them. You will learn about a conceptual model for thinking about the security of information and how to approach information security and to prepare properly including ensuring your organization has a deliberate approach to information security.

Lessons

  • CIA Triad
  • Organizational Preparations
  • Developing and Maintain Policies

Lab : Designing a Blue Team strategy

After completing the lab, students will be able to:

  • Design a high-level approach to mitigating threats
  • Recommend tools and methodology facilitating tracking down origins of cyberattacks
  • Provide high level steps of a recovery effort
  • Recommend methods of preventing cyber attacks
  • Describe regulatory challenges that result from malware exploits

Audience

This 1-day workshop is intended for IT Professionals that require a deeper understanding of Windows Security that wish to increase their knowledge level. This course also provides background in cyber-security prior to taking the other security courses in this track.

Prerequisites

In addition to their professional experience, students who take this training should already have the following technical knowledge:

  • The current cyber-security ecosystem
  • Analysis of hacks on computers and networks
  • Basic Risk Management

Certification

This course is not associated with any Certification.

Lịch khai giảng

Form đăng ký

Bằng cách nhấn nút "ĐĂNG KÝ", tôi hoàn toàn đồng ý với Chính sách quyền riêng tư

Các khóa đào tạo Microsoft khác

MS-500 - Microsoft 365 Security Administration

Trong khóa học này, bạn sẽ học cách đảm bảo quyền truy cập của người dùng vào các tài nguyên của tổ chức bạn. Các nội dung bao gồm bảo vệ bằng mật khẩu người dùng, xác thực đa yếu tố, cách bật Azure Identity Protection, cách thiết lập và sử dụng Azure AD Connect, đồng thời giới thiệu cho bạn quyền truy cập có điều kiện trong Microsoft 365. Bạn sẽ tìm hiểu về các công nghệ giúp bảo vệ Môi trường 365. Cụ thể, bạn sẽ tìm hiểu về các mối đe dọa và các giải pháp bảo mật của Microsoft để giảm thiểu các mối đe dọa. Bạn sẽ tìm hiểu về Secure Score, Exchange Online protection, Azure Advanced Threat Protection, Windows Defender Advanced Threat Protection và quản lý mối đe dọa. Trong khóa học, bạn sẽ tìm hiểu về các công nghệ bảo vệ thông tin giúp bảo vệ môi trường Microsoft 365 của bạn. Khóa học thảo luận về quyền quản lý nội dung thông tin, mã hóa tin nhắn, nhãn, chính sách và quy tắc hỗ trợ ngăn ngừa mất dữ liệu và bảo vệ thông tin. Cuối cùng, bạn sẽ tìm hiểu về lưu trữ trong Microsoft 365 cũng như quản trị dữ liệu, cách thực hiện tìm kiếm và điều tra nội dung. Khóa học này bao gồm các chính sách và thẻ lưu giữ dữ liệu, quản lý hồ sơ tại chỗ cho SharePoint, lưu giữ email và cách thực hiện tìm kiếm nội dung hỗ trợ điều tra eDiscovery.
4.0 ngày

40502G: Microsoft Cloud Workshop: Big Data & Visualization

Overview Duration: 1.0 day In this workshop, you will deploy a web app using Machine Learning (ML) to predict travel delays given flight delay data and weather conditions. Plan a bulk data import operation, followed by preparation, such as cleaning and manipulating the data for testing, and training your Machine Learning model. Objectives At the end of this workshop, you will be better able to build a complete machine learning model in Azure Databricks for predicting if an upcoming flight will experience delays. In addition, you will learn to store the trained model in Azure Machine Learning Model Management, then deploy to Docker containers for scalable on-demand predictions, use Azure Data Factory (ADF) for data movement and operationalizing ML scoring, summarize data with Azure Databricks and Spark SQL, and visualize batch predictions on a map using Power BI. Content Module 1: Whiteboard Design Session - Big data analytics and visualization Lessons Review the customer case study Design a proof of concept solution Present the solution Module 2: Hands-on Lab - Big data analytics and visualization Lessons Retrieve lab environment information and create Databricks cluster Load Sample Data and Databricks Notebooks Setup Azure Data Factory Develop a data factory pipeline for data movement Operationalize ML scoring with Azure Databricks and Data Factory Summarize data using Azure Databricks Visualizing in Power BI Desktop Deploy intelligent web app (Optional) Audience This workshop is intended for Cloud Architects and IT professionals who have architectural expertise of infrastructure and solutions design in cloud technologies and want to learn more about Azure and Azure services as described in the ‘About this Course’ and ‘At Course Completion’ areas. Those attending this workshop should also be experienced in other non-Microsoft cloud technologies, meet the course prerequisites, and want to cross-train on Azure. Prerequisites N/A Certification This course is not associated with any Certification.
1.0 ngày

DP-060T00-A: Migrate NoSQL Workloads to Azure Cosmos DB

Overview Duration: 1.0 day This course will teach the students what is Cosmos DB and how you can migrate MongoDB and Cassandra workloads to Cosmos DB. Objectives At the end of this course, the students will have learned: Building Globally Distributed Applications with Cosmos DB Migrate Mongo DB Workloads to Cosmos DB Migrate Cassandra DB Workloads to Cosmos DB Content Module 1: Building Globally Distributed Applications with Cosmos DB This module describes the benefits and architecture of Cosmos DB. Lessons Cosmos DB overview Cosmos DB APIs Provisioning Throughput Partitioning/Sharding Best Practices Lab : Creating a Cosmos DB Database Create Cosmos DB Account Configure RUs At the end of this module, the students will be able to describe: Cosmos DB overview Cosmos DB APIs Provisioning Throughput Partitioning/Sharding Best Practices Module 2: Migrate MongoDB Workloads to Cosmos DB Migrate MongoDB Workloads to Cosmos DB Lessons Understand Migration Benefits Migration Planning Data Migration Application Migration Post-migration considerations Lab : Migrating MongoDB Workloads to Cosmos DB Create a Migration Project Define Source and Target Perform Migration Verify Migration At the end of this module, the students will be able to: Understand Migration Benefits Perform Migration Planning Perform Data Migration Perform Application Migration Undertake Post-migration considerations Module 3: Migrate Cassandra DB Workloads to Cosmos DB This module describes the benefits and process of migrating Cassandra DB workloads to Cosmos DB. Lessons Understand Migration Benefits Migration Planning Data Migration Application Migration Post-migration considerations Lab : Migrating Cassandra DB Workloads to Cosmos DB Export the Schema Move Data Using CQLSH COPY Move Data Using Spark Verify Migration At the end of this module, the students will be able to: Understand Migration Benefits Perform Migration Planning Perform Data Migration Perform Application Migration Undertake Post-migration considerations Audience The primary audience for this course is database developers who plan to migrate their MongoDB or Cassandra DB workloads to Azure using Cosmos DB. Prerequisites Successful students start this role with a fundamental knowledge of cloud computing concepts and professional experience in configuring NoSQL applications. Specifically: The fundamental concepts of partitioning, replication, and resource governance for building and configuring scalable NoSQL applications that are agnostic of Cosmos DB API. Experience with Azure, such as deploying and managing resources To gain these skills, take the following free online training before attending the course: Azure Data Fundamentals Core cloud services – Azure compute options Case studies: NoSQL databases and cloud object storage Certification This course is not associated with any Certification.
1.0 ngày

EXI: Excel 2019 Intermediate

Whether you need to crunch numbers for sales, inventory, information technology, human resources, or other organizational purposes and departments, the ability to get the right information to the right people at the right time can create a powerful competitive advantage. After all, the world runs on data more than ever before and that's a trend not likely to change, or even slow down, any time soon. But with so much data available and being created on a nearly constant basis, the ability to make sense of that data becomes more critical and challenging with every passing day. You already know how to get Microsoft® Office Excel® to perform simple calculations and how to modify your workbooks and worksheets to make them easier to read, interpret, and present to others. But, Excel is capable of doing so much more. To gain a truly competitive edge, you need to be able to extract actionable organizational intelligence from your raw data. In other words, when you have questions about your data, you need to know how to get Excel to provide the answers for you. And that's exactly what this course aims to help you do. This course builds upon the foundational knowledge presented in the Microsoft® Office Excel® 2019: Part 1 course and will help start you down the road to creating advanced workbooks and worksheets that can help deepen your understanding of organizational intelligence. The ability to analyze massive amounts of data, extract actionable information from it, and present that information to decision makers is at the foundation of a successful organization that is able to compete at a high level. This course covers Microsoft Office Specialist Program exam objectives to help you prepare for the Excel Associate (Office 365 and Office 2019): Exam MO-200 and Excel Expert (Office 365 and Office 2019): Exam MO-201 certifications.
1.0 ngày

EXA: Excel 2019 Advanced

Clearly, you use Excel a lot in your role. Otherwise, you wouldn't be taking this course. By now, you're already familiar with Microsoft® Office Excel® 2019, its functions and formulas, a lot of its features and functionality, and its powerful data analysis tools. You are likely called upon to analyze and report on data frequently, work in collaboration with others to deliver actionable organizational intelligence, and keep and maintain workbooks for all manner of purposes. At this level of use and collaboration, you have also likely encountered your fair share of issues and challenges. You're too busy, though, to waste time scouring over workbooks to resolve issues or to perform repetitive, monotonous tasks. You need to know how to get Excel to do more for you so you can focus on what's really important: staying ahead of the competition. That's exactly what this course aims to help you do. This course builds upon the foundational and intermediate knowledge presented in the Microsoft® Office Excel® 2019: Part 1 and Microsoft® Office Excel® 2019: Part 2 courses to help you get the most of your Excel experience. The ability to collaborate with colleagues, automate complex or repetitive tasks, and use conditional logic to construct and apply elaborate formulas and functions will put the full power of Excel right at your fingertips. The more you learn about how to get Excel to do the hard work for you, the more you'll be able to focus on getting the answers you need from the vast amounts of data your organization generates. This course covers Microsoft Office Specialist Program exam objectives to help you prepare for the Excel Associate (Office 365 and Office 2019): Exam MO-200 and Excel Expert (Office 365 and Office 2019): Exam MO-201 certifications.
1.0 ngày

Đăng ký tư vấn
cùng đội ngũ chuyên gia Trainocate!!

Bản quyền thuộc về Trainocate Việt Nam

back to top
icon đăng ký