Mce Microsoft Certified Expert Cybersecurity Architect Study Guide - Exam Sc-100

Read more

Informationen zum Autor ABOUT THE AUTHORS KATHIRAVAN UDAYAKUMAR is Head of Delivery and Chief Architect for Oracle Digital Technologies (Europe Practice) at Cognizant, covering various elements of technology stack in on-prem and cloud. He has over 18 years of experience in architecture, design, implementation, administration and integration with Green-field IT Systems, ERP, Cloud Platforms and Solutions across various business domains and Industries. He has had a passion for networking since he was an undergraduate and becoming a Cisco Certified Network Associate (CCNA). PUTHIYAVAN UDAYAKUMAR is an infrastructure architect with over 14 years of experience in modernizing and securing IT infrastructure, including the Cloud. He has been writing technical books for more than ten years on various infrastructure and security domains. He has designed, deployed, and secured IT infrastructure out of on-premises and Cloud, including virtual servers, networks, storage, and desktops for various industries, including pharmaceutical, banking, healthcare, aviation, federal entities, etc. He is an open group certified Master certified architect. Klappentext Prep for the SC-100 exam like a pro with Sybex' latest Study GuideIn the MCE Microsoft Certified Expert Cybersecurity Architect Study Guide: Exam SC-100, a team of dedicated software architects delivers an authoritative and easy-to-follow guide to preparing for the SC-100 Cybersecurity Architect certification exam offered by Microsoft. In the book, you'll find comprehensive coverage of the objectives tested by the exam, covering the evaluation of Governance Risk Compliance technical and security operations strategies, the design of Zero Trust strategies and architectures, and data and application strategy design.With the information provided by the authors, you'll be prepared for your first day in a new role as a cybersecurity architect, gaining practical, hands-on skills with modern Azure deployments. You'll also find:* In-depth discussions of every single objective covered by the SC-100 exam and, by extension, the skills necessary to succeed as a Microsoft cybersecurity architect* Critical information to help you obtain a widely sought-after credential that is increasingly popular across the industry (especially in government roles)* Valuable online study tools, including hundreds of bonus practice exam questions, electronic flashcards, and a searchable glossary of crucial technical termsAn essential roadmap to the SC-100 exam and a new career in cybersecurity architecture on the Microsoft Azure cloud platform, MCE Microsoft Certified Expert Cybersecurity Architect Study Guide: Exam SC-100 is also ideal for anyone seeking to improve their knowledge and understanding of cloud-based management and security. Zusammenfassung Prep for the SC-100 exam like a pro with Sybex' latest Study GuideIn the MCE Microsoft Certified Expert Cybersecurity Architect Study Guide: Exam SC-100, a team of dedicated software architects delivers an authoritative and easy-to-follow guide to preparing for the SC-100 Cybersecurity Architect certification exam offered by Microsoft. In the book, you'll find comprehensive coverage of the objectives tested by the exam, covering the evaluation of Governance Risk Compliance technical and security operations strategies, the design of Zero Trust strategies and architectures, and data and application strategy design.With the information provided by the authors, you'll be prepared for your first day in a new role as a cybersecurity architect, gaining practical, hands-on skills with modern Azure deployments. You'll also find:* In-depth discussions of every single objective covered by the SC-100 exam and, by extension, the skills necessary to succeed as a Microsoft cybersecurity architect* Critical information to help you obtain a widely sought-after credential that is increasingly popular across the industry (especially in governme...

List of contents

Introduction xxi
 
Assessment Test xxxii
 
Chapter 1 Define and Implement an Overall Security Strategy and Architecture 1
 
Basics of Cloud Computing 2
 
The Need for the Cloud 3
 
Cloud Service Models 4
 
Cloud Deployment Models 5
 
Introduction to Cybersecurity 6
 
The Need for Cybersecurity 7
 
Cybersecurity Domains 9
 
Getting Started with Zero Trust 12
 
NIST Abstract Definition of Zero Trust 12
 
Key Benefits of Zero Trust 13
 
Guiding Principles of Zero Trust 13
 
Zero Trust Architecture 14
 
Design Integration Points in an Architecture 16
 
Security Operations Center 17
 
Software as a Service 18
 
Hybrid Infrastructure-- IaaS, PaaS, On- Premises 19
 
Endpoints and Devices 21
 
Information Protection 22
 
Identity and Access 24
 
People Security 25
 
IOT and Operational Technology 26
 
Design Security Needs to Be Based on Business Goals 27
 
Define Strategy 28
 
Prepare Plan 28
 
Get Ready 29
 
Adopt 29
 
Secure 29
 
Manage 31
 
Govern 31
 
Decode Security Requirements to Technical Abilities 32
 
Resource Planning and Hardening 32
 
Design Security for a Resiliency Approach 34
 
Before an Incident 34
 
During an Incident 35
 
After an Incident 35
 
Feedback Loop 35
 
Identify the Security Risks Associated with Hybrid and Multi- Tenant Environments 36
 
Deploy a Secure Hybrid Identity Environment 36
 
Deploy a Secure Hybrid Network 36
 
Design a Multi- Tenancy Environment 37
 
Responsiveness to Individual Tenants' Needs 39
 
Plan Traffic Filtering and Segmentation Technical and Governance Strategies 40
 
Logically Segmented Subnets 41
 
Deploy Perimeter Networks for Security Zones 41
 
Avoid Exposure to the Internet with Dedicated WAN Links 42
 
Use Virtual Network Appliances 42
 
Summary 42
 
Exam Essentials 43
 
Review Questions 45
 
Chapter 2 Define a Security Operations Strategy 49
 
Foundation of Security Operations and Strategy 50
 
SOC Operating Model 51
 
SOC Framework 51
 
SOC Operations 54
 
Microsoft SOC Strategy for Azure Cloud 55
 
Microsoft SOC Function for Azure Cloud 57
 
Microsoft SOC Integration Among SecOps and Business Leadership 58
 
Microsoft SOC People and Process 59
 
Microsoft SOC Metrics 60
 
Microsoft SOC Modernization 61
 
Soc Mitre Att&ck 61
 
Design a Logging and Auditing Strategy to Support Security Operations 64
 
Overview of Azure Logging Capabilities 66
 
Develop Security Operations to Support a Hybrid or Multi- Cloud Environment 68
 
Integrated Operations for Hybrid and Multi- Cloud Environments 70
 
Customer Processes 71
 
Primary Cloud Controls 73
 
Hybrid, Multi- Cloud Gateway, and Enterprise Control Plane 74
 
Azure Security Operation Services 74
 
Using Microsoft Sentinel and Defender for Cloud to Monitor Hybrid Security 76
 
Design a Strategy for SIEM and SOAR 78
 
Security Operations Center Best Practices for SIEM and SOAR 79
 
Evaluate Security Workflows 81
 
Microsoft Best Practices for Incident Response 81
 
Microsoft Best Practices for Recovery 82
 
Azure Workflow Automation Uses a Few Key Technologies 82
 
Evaluate a Security Operations Strategy for the Incident Management Life Cycle 83
 
Preparation 84
&nbs