0%

Book Description

Get up to speed with expert tips and techniques to help you prepare effectively for the MS-500 Exam

Key Features

  • Get the right guidance and discover techniques to improve the effectiveness of your studying and prepare for the exam
  • Explore a wide variety of strategies for security and compliance
  • Gain knowledge that can be applied in real-world situations

Book Description

The Microsoft 365 Security Administration (MS-500) exam is designed to measure your ability to perform technical tasks such as managing, implementing, and monitoring security and compliance solutions for Microsoft 365 environments.

This book starts by showing you how to configure and administer identity and access within Microsoft 365. You will learn about hybrid identity, authentication methods, and conditional access policies with Microsoft Intune. Next, the book shows you how RBAC and Azure AD Identity Protection can be used to help you detect risks and secure information in your organization. You will also explore concepts, such as Advanced Threat Protection, Windows Defender ATP, and Threat Intelligence. As you progress, you will learn about additional tools and techniques to configure and manage Microsoft 365, including Azure Information Protection, Data Loss Prevention, and Cloud App Discovery and Security. The book also ensures you are well prepared to take the exam by giving you the opportunity to work through a mock paper, topic summaries, illustrations that briefly review key points, and real-world scenarios.

By the end of this Microsoft 365 book, you will be able to apply your skills in the real world, while also being well prepared to achieve Microsoft certification.

What you will learn

  • Get up to speed with implementing and managing identity and access
  • Understand how to employ and manage threat protection
  • Get to grips with managing governance and compliance features in Microsoft 365
  • Explore best practices for effective configuration and deployment
  • Implement and manage information protection
  • Prepare to pass the Microsoft exam and achieve certification with the help of self-assessment questions and a mock exam

Who this book is for

This Microsoft certification book is designed to help IT professionals, administrators, or anyone looking to pursue a career in security administration by becoming certified with Microsoft's role-based qualification. Those trying to validate their skills and improve their competitive advantage with Microsoft 365 Security Administration will also find this book to be a useful resource.

Table of Contents

  1. Microsoft 365 Security Administration: MS-500 Exam Guide
  2. Why subscribe?
  3. Contributors
  4. About the author
  5. About the reviewers
  6. Packt is searching for authors like you
  7. Preface
    1. Who this book is for
    2. What this book covers
    3. To get the most out of this book
    4. Download the color images
    5. Conventions used
    6. Get in touch
    7. Reviews
  8. Section 1: Configuring and Administering Identity and Access in Microsoft 365
  9. Chapter 1: Planning for Hybrid Identity
    1. Planning your hybrid environment
    2. Synchronization methods with Azure AD Connect
      1. Password hash synchronization
      2. Pass-through authentication
      3. Federation
      4. Azure AD Seamless Single Sign-On
    3. Additional authentication security
      1. Multi-factor authentication
      2. Self-service password reset
      3. Conditional Access
    4. Event monitoring and troubleshooting in Azure AD Connect
    5. Summary
    6. Questions
    7. References
  10. Chapter 2: Authentication and Security
    1. Implementing Azure AD dynamic group membership
      1. Creating a dynamic group in Azure AD using the Azure portal
      2. Creating dynamic groups with Azure AD PowerShell
      3. Using group-based licensing in Azure AD
    2. Implementing Azure AD self-service password reset (SSPR)
      1. Setting up SSPR
      2. Registering for SSPR
      3. Using SSPR to reset passwords
      4. Combined registration for SSPR and MFA
    3. Implementing and managing Multi-Factor Authentication (MFA)
      1. Enabling MFA
      2. Service settings
      3. Configuring the secondary authentication method
    4. Managing Azure AD access reviews
      1. Performing an access review
    5. Summary
    6. Questions
    7. References
  11. Chapter 3: Implementing Conditional Access Policies
    1. Explaining Conditional Access
      1. Creating a simple Conditional Access policy
    2. Enhancing Conditional Access with Intune
    3. Device-based Conditional Access
      1. Creating a device-based Conditional Access policy
    4. App-based Conditional Access
      1. Creating an app-based Conditional Access policy
    5. Monitoring Conditional Access events
    6. Summary
    7. Questions
    8. References
  12. Chapter 4: Role Assignment and Privileged Identities in Microsoft 365
    1. Planning, configuring, and monitoring RBAC
      1. Planning RBAC
      2. Configuring RBAC
      3. Monitoring RBAC
    2. Planning, configuring, and monitoring PIM
      1. Planning PIM
      2. Configuring PIM
      3. Monitoring PIM
    3. Summary
    4. Questions
    5. References
  13. Chapter 5: Azure AD Identity Protection
    1. Understanding Identity Protection
    2. Configuring MFA registration policies
    3. Configuring alert options
      1. Users at risk detected alerts
      2. Weekly digest
    4. Managing and resolving risk events
      1. Examining users at risk
      2. Examining risky sign-ins
      3. Examining risk detections
    5. Summary
    6. Questions
    7. References
  14. Section 2: Implementing and Managing Threat Protection
  15. Chapter 6: Configuring an Advanced Threat Protection Solution
    1. Identifying the organizational needs for Azure ATP
      1. Understanding suspicious activity
      2. Exploring advanced attacks and malicious activities
      3. Understanding the Azure ATP architecture
    2. Setting up an Azure ATP instance
      1. Additional configuration options
    3. Managing Azure ATP activities
      1. The security alerts timeline in the Azure ATP portal
      2. Azure ATP reports
      3. The Azure ATP workspace health center
    4. Summary
    5. Questions
    6. References
  16. Chapter 7: Configuring Microsoft Defender ATP to Protect Devices
    1. Technical requirements
      1. Licensing requirements
      2. Supported operating systems
    2. Implementing Microsoft Defender ATP
      1. Configuring Microsoft Defender ATP
    3. Managing and monitoring Microsoft Defender ATP
      1. Attack surface reduction capabilities
      2. The Secure score dashboard
      3. Integrating with Azure ATP
      4. The Microsoft Defender Security Center settings
    4. Implementing additional Microsoft Defender features
      1. Configuring Microsoft Defender Application Guard
      2. Configuring Microsoft Defender Application Control
      3. Configuring Microsoft Defender Exploit Guard
      4. Using WIP to configure WIP policies and protect data
    5. Managing device encryption for your Windows 10 devices
      1. Introduction to BitLocker
    6. Summary
    7. Questions
    8. References
  17. Chapter 8: Message Protection in Office 365
    1. Protecting users and domains with ATP anti-phishing protection and policies
      1. Setting up an ATP anti-phishing policy
    2. Configuring Office 365 anti-spam protection
      1. Default spam filter policy
      2. Connection filter policy
      3. Outbound spam filter policy
    3. Exploring Office 365 ATP Safe Attachments options and policies
      1. Creating a Safe Attachments policy from the Security and Compliance Center
      2. Creating a Safe Attachments policy using Windows PowerShell
    4. Exploring Office 365 ATP Safe Links options, blocked URLs, and policies
      1. Viewing or modifying the default Safe Links policy from the Security and Compliance Center
      2. Creating a new Safe Links policy from the Security and Compliance Center
      3. Creating a Safe Links policy using Windows PowerShell
    5. Summary
    6. Questions
    7. References
  18. Chapter 9: Threat Intelligence and Tracking
    1. Understanding the Office 365 threat management security dashboard
      1. Threat protection status
      2. Insights
      3. Threat Intelligence
      4. Trends
    2. Using Office 365 Threat Explorer and threat trackers
      1. Using Threat Explorer
      2. Using threat trackers
    3. Managing quarantined messages and files
    4. Performing controlled simulated attacks
      1. Launching an attack
    5. Summary
    6. Questions
    7. References
  19. Section 3: Information Protection in Microsoft 365
  20. Chapter 10: Controlling Secure Access to Information Stored in Office 365
    1. Understanding privileged access management
      1. Enabling PAM
      2. Submitting and approving PAM requests
    2. Understanding Customer Lockbox
      1. Enabling Customer Lockbox
      2. Responding to Customer Lockbox requests
    3. Protecting access to the collaboration components of Office 365
    4. Allowing external user access with B2B sharing
    5. Summary
    6. Questions
    7. References
  21. Chapter 11: Azure Information Protection
    1. Planning and implementing an AIP deployment for your organization
      1. Checking AIP activation status using the Office 365 Admin Center
      2. Checking AIP activation status using the Azure portal
      3. Checking AIP activation status using the Azure AIPService PowerShell
      4. Configuring AIP superusers
    2. Setting up AIP labels and policies
      1. Setting up labels
      2. Setting up label policies
      3. Enabling Unified labeling
      4. User experience
    3. Using the AIP Scanner to detect and protect on-premises content
      1. Installing the AIP Scanner
    4. Tracking and revoking protected documents
    5. Summary
    6. Questions
    7. References
  22. Chapter 12: Data Loss Prevention
    1. Planning and implementing DLP
    2. Creating DLP policies and assigning them to Office 365 locations
      1. Testing your DLP policy
      2. Editing your DLP policy
    3. Managing sensitive information types
    4. DLP reporting and alerting capabilities
    5. Summary
    6. Questions
    7. References
  23. Chapter 13: Cloud App Discovery and Security
    1. Understanding Cloud App Security
      1. Cloud Discovery
      2. Sanctioning or unsanctioning cloud apps
      3. Using app connectors to gain visibility and control of third-party apps
      4. Using Azure AD Conditional Access App Control in conjunction with Cloud App Security
      5. Using built-in policies or creating custom policies to control SaaS app usage
    2. Configuring Cloud App Security
    3. Using the Cloud App Security dashboard, reports, and logs
    4. Summary
    5. Questions
    6. References
  24. Section 4: Data Governance and Compliance in Microsoft 365
  25. Chapter 14: Security Analytics and Auditing Capabilities
    1. Understanding Desktop Analytics, Windows diagnostics, and Office Telemetry
      1. Desktop Analytics
      2. Windows diagnostics
      3. Office Telemetry
    2. Configuring Office 365 auditing
      1. Turning on the audit log
    3. Performing an audit log search
    4. Configuring an audit alert policy
    5. Summary
    6. Questions
    7. References
  26. Chapter 15: Personal Data Protection in Microsoft 365
    1. Conducting searches for personal data
    2. Using retention labels to protect personal data
    3. Accessing logs and reports to search for and monitor personal data leaks
      1. Data loss prevention reports
      2. Alert policies
      3. Microsoft Cloud App Security
    4. Summary
    5. Questions
    6. References
  27. Chapter 16: Data Governance and Retention
    1. Understanding data governance and the retention requirements for your organization
      1. The content is modified or deleted during the retention period
      2. The content is unchanged during the retention period
      3. Mailbox and public folder content
    2. Navigating data governance reports and dashboards
    3. Configuring retention tags, retention policies, and supervision policies
      1. Creating a retention policy using the Exchange admin center
      2. Creating a retention policy using the Security & Compliance Center
      3. Creating a supervision policy
    4. Configuring litigation holds to preserve Office 365 data
      1. Litigation Hold
    5. Importing data into Office 365 from the Security & Compliance Center
    6. Configuring archiving
    7. Summary
    8. Questions
    9. References
  28. Chapter 17: Search and Investigation
    1. Understanding eDiscovery and content search in Microsoft 365
      1. eDiscovery cases
      2. Content search
      3. Advanced eDiscovery
    2. eDiscovery delegated role groups
    3. Creating eDiscovery cases, placing locations on hold, and performing content searches
      1. Creating an eDiscovery case and placing locations on hold
      2. Performing a content search
    4. Exporting content search results
    5. Summary
    6. Questions
    7. References
  29. Chapter 18: Data Privacy Compliance
    1. Planning for regulatory compliance in Microsoft 365
      1. Phase 1 – the first 30 days
      2. Phase 2 – after 90 days
      3. Phase 3 – ongoing
    2. Accessing the GDPR dashboards and reports
      1. Service Trust Portal
      2. Microsoft Compliance Score
      3. The GDPR dashboard and the GDPR toolbox
    3. Completing DSRs
    4. Summary
    5. Questions
    6. References
  30. Section 5: Mock Exam and Assessment
  31. Chapter 19: Mock Exam
    1. Case Study
      1. Overview
  32. Chapter 20: Mock Exam Answers
    1. Answers and explanations
  33. Chapter 21: Assessments
    1. Chapter 1 – Planning for Hybrid Identity
    2. Chapter 2 – Authentication and Security
    3. Chapter 3 – Implementing Conditional Access Policies
    4. Chapter 4 – Role Assignment and Privileged Identities in Microsoft 365
    5. Chapter 5 – Azure AD Identity Protection
    6. Chapter 6 – Configuring an Advanced Threat Protection Solution
    7. Chapter 7 – Configuring Microsoft Defender ATP to Protect Devices
    8. Chapter 8 – Message Protection in Office 365
    9. Chapter 9 – Threat Intelligence and Tracking
    10. Chapter 10 – Controlling Secure Access to Information Stored in Office 365
    11. Chapter 11 – Azure Information Protection
    12. Chapter 12 – Data Loss Prevention
    13. Chapter 13 – Cloud App Discovery and Security
    14. Chapter 14 – Security Analytics and Auditing Capabilities
    15. Chapter 15 – Personal Data Protection in Microsoft 365
    16. Chapter 16 – Data Governance and Retention
    17. Chapter 17 – Search and Investigation
    18. Chapter 18 – Data Privacy Compliance
  34. Other Books You May Enjoy
    1. Leave a review - let other readers know what you think
44.200.196.38