Atjaunināt sīkdatņu piekrišanu

Exam Ref AZ-500 Microsoft Azure Security Technologies [Mīkstie vāki]

3.78/5 (40 ratings by Goodreads)
,
  • Formāts: Paperback / softback, 336 pages, height x width x depth: 230x186x20 mm, weight: 540 g
  • Sērija : Exam Ref
  • Izdošanas datums: 10-Feb-2021
  • Izdevniecība: Addison Wesley
  • ISBN-10: 0136788939
  • ISBN-13: 9780136788935
Citas grāmatas par šo tēmu:
  • Mīkstie vāki
  • Cena: 46,90 €
  • Grāmatu piegādes laiks ir 3-4 nedēļas, ja grāmata ir uz vietas izdevniecības noliktavā. Ja izdevējam nepieciešams publicēt jaunu tirāžu, grāmatas piegāde var aizkavēties.
  • Daudzums:
  • Ielikt grozā
  • Piegādes laiks - 4-6 nedēļas
  • Pievienot vēlmju sarakstam
Exam Ref AZ-500 Microsoft Azure Security TechnologiesPalielināt
  • Formāts: Paperback / softback, 336 pages, height x width x depth: 230x186x20 mm, weight: 540 g
  • Sērija : Exam Ref
  • Izdošanas datums: 10-Feb-2021
  • Izdevniecība: Addison Wesley
  • ISBN-10: 0136788939
  • ISBN-13: 9780136788935
Citas grāmatas par šo tēmu:
Permanent link: https://www.kriso.lv/db/9780136788935.html
Keywords:
Prepare for Microsoft Exam AZ-500: Demonstrate your real-world knowledge of Microsoft Azure security, including tools and techniques for protecting identity, access, platforms, data, and applications, and for effectively managing security operations. Designed for professionals with Azure security experience, this Exam Ref focuses on the critical thinking and decision-making acumen needed for success at the Microsoft Certified: Azure Security Engineer Associate level.  

 

Focus on the expertise measured by these objectives:

Manage identity and access

Implement platform protection

Manage security operations

Secure data and applications

 

This Microsoft Exam Ref:

Organizes its coverage by exam objectives

Features strategic, what-if scenarios to challenge you

Assumes you have expertise implementing security controls and threat protection, managing identity and access, and protecting assets in cloud and hybrid environments

 

About the Exam

Exam AZ-500 focuses on the knowledge needed to manage Azure Active Directory identities; configure secure access with Azure AD; manage application access and access control; implement advanced network security; configure advanced security for compute; monitor security with Azure Monitor, Azure Firewall manager, Azure Security Center, Azure Defender, and Azure Sentinel; configure security policies; configure security for storage and databases; and configure and manage Key Vault.

 

About Microsoft Certification 

Passing this exam fulfills your requirements for the Microsoft Certified: Azure Security Engineer Associate credential, demonstrating your expertise as an Azure Security Engineer capable of maintaining security posture, identifying and remediating vulnerabilities, implementing threat protection, and responding to incident escalations as part of a cloud-based management and security team.

 

See full details at: microsoft.com/learn
Introduction xv
Organization of this book xvi
Preparing for the exam xvi
Microsoft certifications xvi
Quick access to online references xvii
Errata, updates, & book support xvii
Stay in touch xvii
Chapter 1 Manage identity and access
1(88)
Skill 1.1 Manage Azure Active Directory identities
1(37)
Configure security for service principals
2(4)
Manage Azure AD directory groups
6(7)
Manage Azure AD users
13(2)
Configure password writeback
15(15)
Configure authentication methods including password hash and Pass Through Authentication (PTA), OATH, and passwordless authentication
30(6)
Transfer Azure subscriptions between Azure AD tenants
36(2)
Skill 1.2 Configure secure access by using Azure AD
38(26)
Monitor privileged access for Azure AD Privileged Identity Management (PIM)
38(2)
Configure access reviews
40(3)
Activate and configure PIM
43(3)
Implement conditional access policies including multifactor authentication
46(8)
Administer MFA users
54(6)
Configure Azure AD Identity Protection
60(4)
Skill 1.3 Manage application access
64(10)
Create app registrations
64(6)
Configure app registration permission scopes
70(1)
Manage app registration permission consent
71(2)
Manage API access to Azure subscriptions and resources
73(1)
Skill 1.4 Manage access control
74(12)
Configure subscription and resource permissions
74(5)
Configure resource group permissions
79(2)
Identify the appropriate role
81(1)
Apply the principle of least privilege
81(1)
Configure custom RBAC roles
81(3)
Interpret permissions
84(1)
Check access
84(2)
Thought experiment answers
86(1)
Chapter summary
87(2)
Chapter 2 Implement platform protection
89(90)
Skill 2.1 Implement advanced network security
89(62)
Overview of Azure network components
89(15)
Secure the connectivity of virtual networks
104(5)
Configure network security groups and Application Security Groups
109(8)
Create and configure Azure Firewall
117(9)
Configure Azure Front Door service as an application gateway
126(7)
Configure Web Application Firewall (WAF) on Azure Application Gateway
133(2)
Configure Azure Bastion
135(3)
Configure resource firewall
138(7)
Implement service endpoint
145(2)
Implement DDoS
147(4)
Skill 2.2 Configure advanced security for compute
151(26)
Configure endpoint security within the VM
151(5)
Configure system updates for VMs in Azure
156(3)
Configure authentication for containers
159(2)
Configure security for different types of containers
161(3)
Implement vulnerability management
164(2)
Configure isolation for AKS
166(1)
Configure security for container registry
167(1)
Implement Azure disk encryption
168(2)
Configure security for Azure App Service
170(7)
Thought experiment answers
177(1)
Chapter summary
178(1)
Chapter 3 Manage security operations
179(64)
Skill 3.1 Configure security services
179(17)
Configure Azure Monitor
179(4)
Create and customize alerts
183(6)
Configure diagnostic logging and log retention
189(3)
Monitoring security logs by using Azure Monitor
192(4)
Skill 3.2 Monitor security by using Azure Security Center
196(16)
Evaluate vulnerability scans from Azure Security Center
196(5)
Configure Just-In-Time VM access by using Azure Security Center
201(5)
Configure centralized policy management by using Azure Security Center
206(3)
Configure compliance policies and evaluate for compliance by using Azure Security Center
209(3)
Skill 3.3 Monitor security by using Azure Sentinel
212(20)
Introduction to Azure Sentinel's architecture
212(1)
Configure Data Sources to Azure Sentinel
213(4)
Create and customize alerts
217(7)
Configure a Playbook for a security event by using Azure Sentinel
224(4)
Evaluate results from Azure Sentinel
228(4)
Skill 3.4 Configure security policies
232(9)
Configure security settings by using Azure Policy
232(4)
Configure security settings by using Azure Blueprint
236(5)
Thought experiment answers
241(1)
Chapter summary
241(2)
Chapter 4 Secure data and applications
243(68)
Skill 4.1 Configure security for storage
243(25)
Configure access control for storage accounts
244(3)
Configure key management for storage accounts
247(4)
Create and manage Shared Access Signatures (SAS)
251(4)
Create a stored access policy for a blob or blob containers
255(1)
Configure Azure AD authentication for Azure Storage
255(1)
Configure Azure AD Domain Services authentication for Azure Files
256(6)
Configure Storage Service Encryption
262(5)
Advanced Threat Protection for Azure Storage
267(1)
Skill 4.2 Configure security for databases
268(13)
Enable database authentication
268(2)
Enable database auditing
270(3)
Configure Azure SQL Database Advanced Threat Protection
273(3)
Implement database encryption
276(3)
Implement Azure SQL Database Always Encrypted
279(2)
Skill 4.3 Configure and manage Key Vault
281(27)
Manage access to Key Vault
282(1)
Key Vault firewalls and virtual networks
282(3)
Manage permissions to secrets, certificates, and keys
285(2)
Configure RBAC usage in Azure Key Vault
287(1)
Manage certificates
288(8)
Manage secrets
296(2)
Configure key rotation
298(5)
Backup and restore of Key Vault items
303(5)
Thought experiment answers
308(1)
Chapter summary
308(3)
Index 311
Yuri Diogenes (CISSP, E|CND, E|CEH, E|CSA, E|CHFI, CompTIA Security+, CySA+, Cloud Essentials Certified, Mobility+, Network+, CASP, CyberSec First Responder, MCSE, MCTS) is Senior Program Manager at Microsoft Cybersecurity Engineerings Cloud and Artificial Intelligence Division. In this role, he helps customers onboard and deploy Azure Security Center. At Microsoft since 2006, his roles have ranged from senior support escalation engineer on the CSS Forefront Edge Team to co-creator of the Azure Security Center content experience. A Professor at EC-Council Universitys MS and BS-level Cybersecurity programs, he holds an MS in Cybersecurity Intelligence & Forensics from Utica College, and an MBA from FGF in Brazil. His 22 books include Microsoft Azure Security Center, Second Edition and Enterprise Mobility Suite: Managing BYOD and Company-Owned Devices.  Orin Thomas (MVP, Microsoft Regional Director, MCT, MCSE, MCITP) is Principal Cloud Operations Advocate at Microsoft, and author of 40+ books for Microsoft Press on topics including Windows Server, Windows Client, Azure, Security, System Center, Exchange Server, and SQL Server. His recent titles include Exam Ref MS-100 Microsoft 365 Identity and Services and Windows Server 2019 Inside Out. Thomas has authored Azure Architecture courses at Pluralsight, as well as multiple Microsoft Official Curriculum and EdX courses on diverse IT topics. He is completing a Doctorate in Information Technology at Charles Sturt University.