Manage security operations (15-20%)

Configure security services

Topic	Link
configure Microsoft Azure monitor	Azure Monitor overview
	Analyze your Azure infrastructure by using Azure Monitor logs
configure Microsoft Azure log analytics	Quickstart: Monitor an Azure resource with Azure Monitor
configure diagnostic logging and log retention	User retention analysis for web applications with Application Insights
configure vulnerability scanning	Vulnerability assessments for your Azure Virtual Machines
	Integrated vulnerability scanner for virtual machines (Standard tier only)
	Remediate recommendations in Azure Security Center
Experiential learning	Module 3: Analyze audit logs and reports

Topic	Link
configure centralized policy management by using Microsoft Azure Security Center	Working with security policies
	Quickstart: Create a policy assignment to identify non-compliant resources
	Tutorial: Create and manage policies to enforce compliance
	Tutorial: Create a custom policy definition
	Tutorial: Manage tag governance with Azure Policy
configure Just in Time VM access by using Microsoft Azure Security Center	Secure your management ports with just-in-time access
Experiential Learning	Resolve security threats with Azure Security Center
	Protect your servers and VMs from brute-force and malware attacks with Azure Security Center
	Identify security threats with Azure Security Center

Topic	Link
create and customize alerts	Security alerts - a reference guide
review and respond to alerts and recommendations	Manage and respond to security alerts in Azure Security Center
	Workflow automation
	Resolve security threats with Azure Security Center
configure a playbook for a security event by using Microsoft Azure Security Center	Azure Security Center Playbook: Security Alerts
investigate escalated security incidents	Improve incident response with alerting on Azure
	Security alerts investigation