SC 900: Microsoft Security, Compliance & Identity Fundamentals Training

The SC-900: Microsoft Security, Compliance, and Identity Fundamentals course provides an essential understanding of Microsoft’s security, identity, and compliance ecosystem. This training introduces the core concepts of Zero Trust, identity fundamentals, threat protection, and compliance capabilities across Microsoft Azure and Microsoft 365. Designed for beginners, the course prepares participants for the SC-900 certification and builds a strong foundation for future security-focused learning.

This course offers a high-level overview of Microsoft’s identity and access management (IAM), security, compliance, and governance solutions. Participants will explore how Microsoft implements Zero Trust, protects digital assets, and ensures regulatory compliance. Through clear explanations and real-world examples, this course demystifies core security principles and explains how Microsoft technologies help organizations safeguard their cloud and on-premises environments.

Module 1: Introduction to Security, Compliance & Identity (SCI)

Topics:

• Overview of Microsoft’s Security, Compliance, and Identity solutions
• Zero Trust model: Verify explicitly, least privilege, assume breach
• Shared responsibility model
• Basic security & compliance concepts

Lab 1: Exploring the Microsoft Security Portal

• Navigate Microsoft Defender Portal
• Explore Secure Score and recommendations
• Review basic threat reports

Module 2: Identity Concepts in Microsoft Entra (Azure AD)

Identity Basics

Topics:

• What is identity in the cloud?
• Authentication vs. authorization
• Identity types: Users, groups, service principals, managed identities

Lab 2: Working with Users & Groups

• Create Azure AD users and groups
• Assign licenses and manage group-based access

Access Management

Topics:

• Single Sign-On (SSO)
• Multi-Factor Authentication (MFA)
• Conditional Access basics
• Password protection concepts (SSPR, banned password list)

Lab 3: Enforcing MFA & Conditional Access

• Enable MFA for a test user
• Create a basic Conditional Access rule
• Test policy impact in Azure Portal

Identity Governance

Topics:

• Access lifecycle
• Entitlement management
• Access reviews
• Privileged Identity Management (PIM) fundamentals

Lab 4: Introduction to PIM

• Activate just-in-time (JIT) access
• Run an access review
• Configure role assignments for PIM

Module 3: Microsoft Security Solutions

Microsoft Defender XDR (Microsoft 365 Defender)

Topics:

• Overview of cross-domain threat protection
• Identity, email, endpoint, and app security
• Automated investigation & response (AIR)

Lab 5: Investigating Alerts in Microsoft Defender

• Review a sample incident
• Navigate investigation graphs
• Identify threat indicators

Microsoft Defender for Cloud

Topics:

• Cloud security posture management
• Workload protection (VMs, containers, data)
• Secure Score for Azure resources

Lab 6: Defender for Cloud Security Posture Review

• Analyze Secure Score
• Review recommendations and fix issues
• Explore threat detection alerts

Microsoft Sentinel (SIEM/SOAR)

Topics:

• Introduction to Sentinel
• Data connectors and log ingestion
• Incident automation and playbooks

Lab 7: Sentinel Log Analysis & Incident Automation

• Connect Azure AD logs to Sentinel
• Run KQL queries
• Trigger a playbook for automated response

Module 4: Microsoft Compliance Solutions (Purview)

Information Protection & Governance

Topics:

• Sensitivity labels
• Data classification
• DLP (Data Loss Prevention)
• Retention policies

Lab 8: Classify & Protect Data

• Apply sensitivity labels to documents
• Create a DLP policy for Microsoft 365 data
• Test policy alerts

Compliance Management & Risk

Topics:

• Compliance Manager
• Assessments & regulatory templates
• Insider risk management basics
• Audit & eDiscovery

Lab 9: Compliance Manager Assessment

• Run a compliance assessment
• Review recommended improvement actions

Lab 10: eDiscovery & Audit Investigation

• Create an eDiscovery case
• Add custodians
• Review and export sample data

Module 5: SCI Features Across Microsoft Entra (Azure AD)

Topics:

• Identity protection
• App access and SSO for cloud apps
• Hybrid identity (Azure AD Connect)
• Zero Trust identity strategy

Lab 11: Identity Protection Policies

• Configure risk-based user sign-in policies
• Review risky sign-in logs

Module 6: SC-900 Exam Preparation

Topics:

• Exam objective review
• Sample questions
• Key concepts recap
• Tips for passing the SC-900 exam

Lab 12: Practice Exam Simulation

• Attempt sample SC-900 practice questions
• Review incorrect answers with guidance