Skip to content
>_
SecOps
Log
_
Home
Courses
Learning path
Resources
Topics
Blog
All courses
Azure security
Advanced
5 sections · 15 lessons · ~9h total · 60-question self-test
Start course
01
Entra ID & RBAC
3 lessons
Test yourself
01
Entra ID, Conditional Access & PIM
Two identity planes, adaptive sign-in, just-in-time roles.
35 min
02
Azure RBAC, scope & deny assignments
Inheritance, the roles that grant access, deny wins.
35 min
03
Managed identities & SP escalation
Kill client secrets; watch credential injection.
35 min
02
Network security & segmentation
3 lessons
Test yourself
01
NSGs, ASGs & no public management
Identity-aware rules, Bastion/JIT, flow logs.
30 min
02
Azure Firewall & egress control
Central FQDN allowlists, threat intel, IDPS.
35 min
03
Private Endpoints & no public PaaS
Private IPs and disabling public access.
30 min
03
Key Vault & encryption
3 lessons
Test yourself
01
Key Vault access & recovery
RBAC data plane, purge protection, private vaults.
35 min
02
CMK, Managed HSM & at-rest
Own the key, the rotation, and the kill switch.
30 min
03
Secrets, references & rotation
Runtime fetch by identity, overlap rotation.
30 min
04
Defender for Cloud & Sentinel
3 lessons
Test yourself
01
Defender for Cloud: CSPM + CWPP
Secure Score, workload protection, org-wide.
30 min
02
Microsoft Sentinel SIEM/SOAR
Analytics rules, UEBA, playbooks that respond.
35 min
03
Activity Log & immutable trails
Diagnostic settings to a locked, central store.
30 min
05
Governance & incident response
3 lessons
Test yourself
01
Azure Policy & effects
Deny, deployIfNotExists, initiatives at scale.
30 min
02
Management groups & landing zones
Inherited guardrails, secure-by-default subscriptions.
30 min
03
Incident response & forensics
Revoke sessions, isolate, snapshot, hunt persistence.
35 min
Final exam
Test yourself on everything
60 questions drawn from all 5 sections — every answer explained as you pick.
Start final exam