Microsoft Certified: Security, Compliance, and Identity Fundamentals

Exam domains

• Describe the capabilities of Microsoft security solutions38%

  Describe Azure DDoS Protection, Azure Firewall, Web Application Firewall, NSGs, virtual-network segmentation, Azure Bastion, and Key Vault; Microsoft Defender for Cloud and Cloud Security Posture Management; Microsoft Sentinel SIEM/SOAR; and Microsoft Defender XDR services including Defender for Office 365, Endpoint, Cloud Apps, Identity, and Vulnerability Management.

• Describe the capabilities of Microsoft Entra28%

  Describe Microsoft Entra ID identity types, hybrid identity, authentication methods, MFA, password protection, Conditional Access, RBAC, ID Governance, access reviews, Privileged Identity Management, and ID Protection.

• Describe the capabilities of Microsoft compliance solutions23%

  Describe Service Trust Portal, Microsoft privacy principles, Microsoft Priva, the Microsoft Purview portal, Compliance Manager, data classification, sensitivity labels, data loss prevention, records management, retention policies, insider risk management, eDiscovery, and audit.

• Describe the concepts of security, compliance, and identity13%

Sources

Questions are grounded in 50 references from official and authoritative materials.

• What is Cloud Security Posture Management (CSPM) - Microsoft Defender for Cloud | Microsoft Learn
• Learn about retention policies & labels to retain or delete | Microsoft Learn
• Azure Key Vault Overview - Azure Key Vault | Microsoft Learn
• What is Microsoft Defender XDR? - Microsoft Defender XDR | Microsoft Learn

Similar exams

• Microsoft Certified: Azure FundamentalsMicrosoft
• Microsoft Certified: Azure Security Engineer AssociateMicrosoft
• Microsoft Certified: Azure AI FundamentalsMicrosoft