Microsoft Cybersecurity Architect Expert (SC-100) Cert Prep: 1 Design a Zero Trust Strategy and Architecture

Learn everything you need to know to pass the first part of the Microsoft Cybersecurity Architect Expert SC-100 exam.

Introduction

• Prepping for domain one of the SC-100 exam
• What you should know
• Lab setup

1. Build an Overall Security Strategy and Architecture

• Identify the integration points in an architecture using MCRA
• Translate business goals into security requirements
• Translate security requirements into technical capabilities
• Design security for a resiliency strategy
• Integrate a hybrid or multitenant environment into a security strategy
• Develop a technical and governance strategy for traffic filtering and segmentation

2. Design a Security Operations Strategy

• Design a logging and auditing strategy to support security operations
• Develop security operations to support a hybrid or multicloud environment
• Design a strategy for SIEM and SOAR
• Evaluate security workflows
• Evaluate a security operations strategy for incident management lifecycle
• Evaluate a security operations strategy for sharing technical threat intelligence

3. Design an Identity Security Strategy

• Design a strategy for access to cloud resources
• Recommend an identity store—tenants, B2B, B2C, hybrid
• Recommend an authentication strategy
• Recommend an authorization strategy
• Design a strategy for conditional access
• Design a strategy for role assignment and delegation
• Design a security strategy for privileged role access to infrastructure
• Design a security strategy for privileged activities

Conclusion

• Next steps