Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Microsoft Cybersecurity Architect Exam Ref SC-100
  • Table Of Contents Toc
  • Feedback & Rating feedback
Microsoft Cybersecurity Architect Exam Ref SC-100

Microsoft Cybersecurity Architect Exam Ref SC-100

By : Dwayne Natwick
4.6 (11)
Buy this Book
close
close
Microsoft Cybersecurity Architect Exam Ref SC-100

Microsoft Cybersecurity Architect Exam Ref SC-100

4.6 (11)
By: Dwayne Natwick
Buy this Book

Overview of this book

Microsoft Cybersecurity Architect Exam Ref SC-100 is a comprehensive guide that will help cybersecurity professionals design and evaluate the cybersecurity architecture of Microsoft cloud services. Complete with hands-on tutorials, projects, and self-assessment questions, you’ll have everything you need to pass the SC-100 exam. This book will take you through designing a strategy for a cybersecurity architecture and evaluating the governance, risk, and compliance (GRC) of the architecture. This will include cloud-only and hybrid infrastructures, where you’ll learn how to protect using the principles of zero trust, along with evaluating security operations and the overall security posture. To make sure that you are able to take the SC-100 exam with confidence, the last chapter of this book will let you test your knowledge with a mock exam and practice questions. By the end of this book, you’ll have the knowledge you need to plan, design, and evaluate cybersecurity for Microsoft cloud and hybrid infrastructures, and pass the SC-100 exam with flying colors.
Table of Contents (20 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Download the color images
Icon
Conventions used
Icon
Get in touch
Icon
Share Your Thoughts
Icon
Download a free PDF copy of this book
1
Part 1: The Evolution of Cybersecurity in the Cloud
Icon
Part 1: The Evolution of Cybersecurity in the Cloud
Free Chapter
2
Chapter 1: Cybersecurity in the Cloud
Icon
Chapter 1: Cybersecurity in the Cloud
Icon
What is cybersecurity?
Icon
Evolution of cybersecurity from on-premises to the cloud
Icon
Cybersecurity architecture use cases
Icon
Understanding the scope of cybersecurity in the cloud
Icon
Summary
3
Part 2: Designing a Zero-Trust Strategy and Architecture
Icon
Part 2: Designing a Zero-Trust Strategy and Architecture
4
Chapter 2: Building an Overall Security Strategy and Architecture
Icon
Chapter 2: Building an Overall Security Strategy and Architecture
Icon
Identifying the integration points in an architecture by using the Microsoft Cybersecurity Reference Architecture
Icon
Translating business goals into security requirements
Icon
Translating security requirements into technical capabilities
Icon
Designing security for a resiliency strategy
Icon
Integrating a hybrid or multi-tenant environment into a security strategy
Icon
Developing a technical and governance strategy for traffic filtering and segmentation
Icon
Summary
5
Chapter 3: Designing a Security Operations Strategy
Icon
Chapter 3: Designing a Security Operations Strategy
Icon
Designing a logging and auditing strategy to support security operations
Icon
Developing security operations to support a hybrid or multi-cloud environment
Icon
Designing a strategy for SIEM and SOAR
Icon
Evaluating security workflows
Icon
Evaluating a security operations strategy for the incident management life cycle
Icon
Evaluating a security operations strategy for sharing technical threat intelligence
Icon
Summary
6
Chapter 4: Designing an Identity Security Strategy
Icon
Chapter 4: Designing an Identity Security Strategy
Icon
Zero Trust for identity and access management
Icon
Designing a strategy for access to cloud resources
Icon
Recommending an identity store
Icon
Recommending an authentication and authorization strategy
Icon
Designing a strategy for CA
Icon
Designing a strategy for role assignment and delegation
Icon
Designing a security strategy for privileged role access
Icon
Designing a security strategy for privileged activities
Icon
Case study – designing a Zero Trust architecture
Icon
Summary
7
Part 3: Evaluating Governance, Risk, and Compliance (GRC) Technical Strategies and Security Operations Strategies
Icon
Part 3: Evaluating Governance, Risk, and Compliance (GRC) Technical Strategies and Security Operations Strategies
8
Chapter 5: Designing a Regulatory Compliance Strategy
Icon
Chapter 5: Designing a Regulatory Compliance Strategy
Icon
Interpreting compliance requirements and translating them into specific technical capabilities
Icon
Evaluating infrastructure compliance by using Microsoft Defender for Cloud
Icon
Interpreting compliance scores and recommending actions to resolve issues or improve security
Icon
Designing the implementation of Azure Policy
Icon
Designing for data residency requirements
Icon
Translating privacy requirements into requirements for security solutions
Icon
Case study – designing for regulatory compliance
Icon
Summary
9
Chapter 6: Evaluating the Security Posture and Recommending Technical Strategies to Manage Risk
Icon
Chapter 6: Evaluating the Security Posture and Recommending Technical Strategies to Manage Risk
Icon
Evaluating the security posture by using benchmarks
Icon
Evaluating the security posture by using Microsoft Defender for Cloud
Icon
Evaluating the security posture by using Secure Scores
Icon
Evaluating the security posture of cloud workloads
Icon
Designing security for an Azure Landing Zone
Icon
Interpreting technical threat intelligence and recommending risk mitigations
Icon
Recommending security capabilities or controls to mitigate identified risks
Icon
Case study – evaluating the security posture
Icon
Summary
10
Part 4: Designing Security for Infrastructure
Icon
Part 4: Designing Security for Infrastructure
11
Chapter 7: Designing a Strategy for Securing Server and Client Endpoints
Icon
Chapter 7: Designing a Strategy for Securing Server and Client Endpoints
Icon
Planning and implementing a security strategy across teams
Icon
Specifying security baselines for server and client endpoints
Icon
Specifying security requirements for servers, including multiple platforms and operating systems
Icon
Specifying security requirements for mobile devices and clients, including endpoint protection, hardening, and configuration
Icon
Specifying requirements to secure AD DS
Icon
Designing a strategy to manage secrets, keys, and certificates
Icon
Designing a strategy for secure remote access
Icon
Understanding security operations frameworks, processes, and procedures
Icon
Case study – designing a secure architecture for endpoints
Icon
Summary
12
Chapter 8: Designing a Strategy for Securing SaaS, PaaS, and IaaS
Icon
Chapter 8: Designing a Strategy for Securing SaaS, PaaS, and IaaS
Icon
Specifying security baselines for SaaS, PaaS, and IaaS services
Icon
Specifying security requirements for IoT workloads
Icon
Specifying security requirements for data workloads, including SQL, Azure SQL Database, Azure Synapse, and Azure Cosmos DB
Icon
Specifying security requirements for storage workloads, including Azure Storage
Icon
Specifying security requirements for web workloads, including Azure App Service
Icon
Specifying security requirements for containers
Icon
Specifying security requirements for container orchestration
Icon
Case study – security requirements for IaaS, PaaS, and SaaS
Icon
Summary
13
Part 5: Designing a Strategy for Data and Applications
Icon
Part 5: Designing a Strategy for Data and Applications
14
Chapter 9: Specifying Security Requirements for Applications
chevron up
Icon
Chapter 9: Specifying Security Requirements for Applications
Icon
Specifying priorities for mitigating threats to applications
Icon
Specifying a security standard for onboarding a new application
Icon
Specifying a security strategy for applications and APIs
Icon
Case study – security requirements for applications
Icon
Summary
15
Chapter 10: Designing a Strategy for Securing Data
Icon
Chapter 10: Designing a Strategy for Securing Data
Icon
Specifying priorities for mitigating threats to data
Icon
Designing a strategy to identify and protect sensitive data
Icon
Specifying an encryption standard for data at rest and in motion
Icon
Case study – designing a strategy to secure data
Icon
Summary
16
Chapter 11: Case Study Responses and Final Assessment/Mock Exam
Icon
Chapter 11: Case Study Responses and Final Assessment/Mock Exam
Icon
Case study sample responses
Icon
Mock exam practice questions
Icon
Mock exam answers and chapter reference
Icon
Summary
17
Index
Icon
Index
Icon
Why subscribe?
18
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Packt is searching for authors like you
Icon
Share Your Thoughts
Icon
Download a free PDF copy of this book
Appendix: Preparing for Your Microsoft Exam
Icon
Appendix: Preparing for Your Microsoft Exam
Icon
Technical requirements
Icon
Preparing for a Microsoft exam
Icon
Resources available and accessing Microsoft Learn
Icon
Creating a Microsoft 365 trial subscription
Icon
Setting up a free month of Azure services
Icon
Exam objectives
Icon
Who should take the SC-100 exam?
Icon
Summary

Specifying a security strategy for applications and APIs

As stated at the beginning of this chapter, applications are used by all users to access and perform their daily tasks. Applications are also the primary means for accessing data, some of which may be sensitive or confidential. This combination of the application and the data that is accessed becomes the primary aspect of value to the business, internally and externally. For example, the company website is running on an Azure App Service with an Azure SQL database connected to the App Service to provide the inventory of products available to purchase when a customer visits the website.

The architecture of applications has changed with the use of cloud hyperscaler technologies. Legacy applications that utilize servers and virtual machines with embedded identity and access controls have moved to more modern application development with cloud identity providers. Migrations to the cloud services with these legacy applications...

Unlock full access

Continue reading for free

A Packt free trial gives you instant online access to our library of over 7000 practical eBooks and videos, constantly updated with the latest in tech
Start a 7-day FREE trial
End of Section 4
Next Section

Create a Note

Modal Close icon
You need to login to use this feature.
notes
bookmark search playlist font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Delete Note

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY