Microsoft Azure Security Engineer Associate (AZ-500) exam measures the competence of the candidates to manage identity and access, protect the platform, manage security pertaining to data and applications. A Microsoft Azure Security Engineer serves the purpose of cloud-based management along with securing hybrid environments as part of an end-to-end infrastructure. Candidates for this exam are primarily involved in the field of technology or looking for a shift in employment. They should be skilled in scripting and automation, cloud N-tier architecture, competence in cloud-capabilities, and Microsoft Azure products and services. Microsoft, Google, Lockheed, Martin, Symantec, Securonix, etc. are top companies hiring Microsoft Azure Security Engineer Associates.
Average Salary Range of certified Microsoft Azure Security Engineer Associate (AZ-500):
India : 19,29,000 INR (Source)
Benefits:
- Productivity Boost - A Microsoft Azure-Certified Security Engineer Associate can rest assured that this certification will propel it forward in its career along with becoming more productive than one’s peers. It ensures a higher pay and immense recognition by the employers.
- Anticipated Demand - It is predicted that the global Cloud Computing Marketing is supposed to reach $555 billion in 2020. Therefore, the demand for Microsoft Azure Certified Security Engineer Associate is on high-rise worldwide.
Microsoft Azure Security Engineer Associate (AZ-500) Examination Topics:
- Manage Identity and Access (20-25%)
- Implement Platform Protection (35-40%)
- Manage Security Operations (15-20%)
- Secure Data and Applications (30-35%)
AZ-500 Microsoft Azure Security Technology
Hi All,
I recently passed Azure Az-500 exam to evaluate my knowledge in security area and many folks reaching out me for exam guide and material.
I'm listing the exam guide that I followed and also its my day to day work.
1. Microsoft learning path for Azure Security Associate. It was very usefull to understand concepts.
docs.microsoft.com
2. I took udemy AZ-500 course of Alan Rodrigues which I found very helpful with 2 practice test.
udemy.com
3. Followed the blog from squastana which has links to Microsoft docs for every topics in AZ 500 exam skills.
stanislas.io
4. @ last did some practice test.
5. Suggest to spend some time on Azure portal for Practicals.
6. Focus on Identity management, RBAC,PIM,MFA,Key Vault, Disk encryption, Storage account security, WAF, NSG etc.
I hope it will help to others folks who are planning to do it.
Have a happy learning
Good luck.
......Read More
Mohammadrafik Shaikh
Az-500
The first thing I did before I started my preparation was to print out the certificate objective which are
Manage identity and access (20-25%)
Configure Azure Active Directory for workloads
? create App Registration
? configure App Registration permission scopes
? manage App Registration permission consent
? configure Multi-Factor Authentication settings
? manage Azure AD directory groups
? manage Azure AD users
? install and configure Azure AD Connect
? configure authentication methods
? implement Conditional Access policies
? configure Azure AD identity protection
Configure Azure AD Privileged Identity Management
Configure Azure tenant security
? monitor privileged access
? configure Access Reviews
? activate Privileged Identity Management
? transfer Azure subscriptions between Azure AD tenants
? manage API access to Azure subscriptions and resources
Implement platform protection (35-40%)
Implement network security
? configure virtual network connectivity
? configure Network Security Groups (NSGs)
? create and configure Azure Firewall
? create and configure Azure Front Door service
? create and configure application security groups
? configure remote access management
? configure baseline
? configure resource firewall
Implement host security
Configure container security
Implement Azure Resource management security
? configure endpoint security within the VM
? configure VM security
? harden VMs in Azure
? configure system updates for VMs in Azure
? configure baseline
? configure network
? configure authentication
? configure container isolation
? configure AKS security
? configure container registry
? implement vulnerability management
? create Azure resource locks
? manage resource group security
? configure Azure policies
? configure custom RBAC roles
? configure subscription and resource permissions
Manage security operations (15-20%)
Configure security services
? configure Azure Monitor
? configure diagnostic logging and log retention
? configure vulnerability scanning
Configure security policies
? configure centralized policy management by using Azure Security Center
? configure Just in Time VM access by using Azure Security Center
Manage security alerts
? create and customize alerts
? review and respond to alerts and recommendations
? configure a playbook for a security event by using Azure Security Center
? investigate escalated security incidents
Secure data and applications (25-30%)
Configure security policies to manage data
? configure data classification
? configure data retention
? configure data sovereignty
Configure security for data infrastructure
? enable database authentication
? enable database auditing
? configure Azure SQL Database Advanced Threat Protection
? configure access control for storage accounts
? configure key management for storage accounts
? configure Azure AD authentication for Azure Storage
? configure Azure AD Domain Services authentication for Azure Files
? create and manage Shared Access Signatures (SAS)
? configure security for HDInsight
? configure security for Cosmos DB
? configure security for Azure Data Lake
Configure encryption for data at rest
Configure application security
Configure and manage Key Vault
? implement Azure SQL Database Always Encrypted
? implement database encryption
? implement Storage Service Encryption
? implement disk encryption
? configure SSL/TLS certs
? configure Azure services to protect web apps
? create an application security baseline
? manage access to Key Vault
? manage permissions to secrets, certificates, and keys
? configure RBAC usage in Azure Key Vault
? manage certificates
? manage secrets
? configure key rotation
So I checked every box in the objective field and then I did practice questions at exam topics.com
......Read More
Patrick Evah