Security, Compliance, and

Identity training and

certifications

aka.ms/SecurityTrainCertDeck
Table of How to use this deck
contents
Security, Certifications
Compliance,
and Identity
Microsoft Security certifications
This guide has been Security, Compliance, and Identity Fundamentals
created to provide
training and Azure Security Engineer Associate
certification options
to achieve personal Microsoft 365 Security Administrator Associate
success.
Security Operations Analyst Associate

Identity and Access Administrator Associate

Information Protection Administrator Associate

Welcome to How to use this deck
Security,
Compliance,
and Identity Certification portfolio

training and
Available certifications and associated exams in portfolio.

certifications
Our approach to learning Certification overview
is to develop an inclusive Identify the right candidate profile with the recommended skills
environment for every knowledge and experience.
stage in an individual’s
career.
Certification journey
This guide has been Recommended steps to earn a certification, including preparation
created to provide resources and opportunities for continue learning.
training and certification
options to achieve
personal success. Certification learning path
Recommended training content to prepare
for certification exams, including self-paced training and Microsoft
Official Courseware (MOC) delivered by Learning Partners.
Microsoft Security
certifications

Role-based Associate
Expand your technical skill set
• Azure Security Engineer (AZ-500)
• Microsoft 365 Security Administrator (MS-500)
• Information Protection Administrator (SC-400)
• Identity and Access Administrator
(SC-300)
• Security Operations Analyst
(SC-200)

Expert

Fundamentals (SC-900)
• Security, Compliance, and Identity Fundamentals
Master the basics
Overview of Microsoft Certified:
Get started at
Security, Compliance, and Identity Fundamentals aka.ms/SecurityCerts_Fundamentals

Exam details Certification

Who is this
certification for? Products featured
SC-900: Pass certification exam SC-900
This certification is targeted to those Microsoft Security, Compliance, and to earn this certification • Azure Active Directory
looking to familiarize themselves with Identity Fundamentals
• Azure Sentinel
the fundamentals of security, Skills measured: • Azure Secure Score
compliance, and identity (SCI) across • Concepts of Security, Compliance, and Identity • Microsoft 365 Defender
cloud-based and related Microsoft
• Capabilities of Microsoft Identity and Access • Microsoft Security Score
services. This is a broad audience that Management Solutions
may include business stakeholders, new Microsoft Certified: • Microsoft Compliance
• Capabilities of Microsoft Security Solutions Security, Compliance, and Identity Manager
or existing IT professionals, or students Fundamentals
• Capabilities of Microsoft Compliance Solutions • Microsoft Intune
who have an interest in Microsoft
security, compliance, and identity Knowledge and experience: • And more…
solutions. Candidates should be familiar with Microsoft Azure
and Microsoft 365 and understand how Microsoft
security, compliance, and identity solutions can
span across these solution areas to provide a
holistic and end-to-end solution.

© 2021 Microsoft Corporation. All rights reserved. Find a Learning Partner

The journey to Microsoft Certified:
Get started at
Security, Compliance, and Identity Fundamentals aka.ms/SecurityCerts_Fundamentals

Start here
Decide if this is the right Upskill with recommended Pass required exam to
certification for you training and experience earn your certification

This certification is targeted to those Skills outline guide Exam SC-900

looking to familiarize themselves with the Microsoft Security, Compliance,
• SC-900
fundamentals of security, compliance, and and Identity Fundamentals
identity (SCI) across cloud-based and
related Microsoft services.

Self-paced online learning Microsoft Certified:

Microsoft Learn Security, Compliance, and Identity
Fundamentals

Additional resources
• Microsoft Docs

First, make sure your skills are up to date.

Need to update your skills in

security, compliance, and identity?
Security, Compliance, and
Identity Fundamentals training
on Microsoft Learn.

© 2021 Microsoft Corporation. All rights reserved. Find a Learning Partner

Learning path for Microsoft Certified:

Security, Compliance, and Identity Fundamentals

This certification is targeted to those looking to familiarize themselves with the fundamentals of security, compliance, and identity (SCI) across cloud-based and related Microsoft services. This is
a broad audience that may include business stakeholders, new or existing IT professionals, or students who have an interest in Microsoft security, compliance, and identity solutions.

Describe the concepts of security, Describe the capabilities of Exam SC-900

compliance, and identity Microsoft security solutions Microsoft Security, Compliance,
2 modules 6 modules and Identity Fundamentals
Pass certification exam
Self-paced online SC-900 to earn this
training on certification
Microsoft Learn Describe the capabilities of Describe the capabilities of
Microsoft Identity and access Microsoft compliance solutions Microsoft Certified:
management solutions 6 modules Security, Compliance, and
5 modules Identity Fundamentals

© 2021 Microsoft Corporation. All rights reserved. Find a Learning Partner

Overview of Microsoft Certified:
Get started at
Azure Security Engineer Associate aka.ms/AzureCerts_SecurityEngineer

Exam details Certification

Who is this
certification for? Products featured
AZ-500: Pass certification exam AZ-500
Candidates for this certification Microsoft Azure Security Technologies to earn this certification • Microsoft Azure
should have subject matter expertise
implementing security controls and Skills measured:
threat protection, managing identity • Manage identity and access
and access, and protecting data, • Implement platform protection
applications, and networks in cloud and
• Manage security operations
hybrid environments as part of an end- Microsoft Certified:
• Secure data and applications Azure Security Engineer Associate
to-end infrastructure. Responsibilities
Azure Security Engineers implement
for this role include maintaining the Knowledge and experience: security controls and threat protection,
security posture, identifying and manage identity and access, and protect
A candidate for this exam should have strong skills
remediating vulnerabilities by using a data, applications, and networks in cloud
in scripting and automation; a deep understanding
and hybrid environments as part of an
variety of security tools, implementing of networking, virtualization, and cloud N-tier
end-to-end infrastructure.
architecture; and a strong familiarity with cloud
threat protection, and responding to capabilities and products and services for Azure,
security incident escalations. plus other Microsoft products and services.

© 2021 Microsoft Corporation. All rights reserved. Watch the Azure certifications overview video
The journey to Microsoft Certified:
Get started at
Azure Security Engineer Associate aka.ms/AzureCerts_SecurityEngineer

Start here
Decide if this is the right Upskill with recommended Pass required exam to
certification for you training and experience Take a practice exam earn your certification Continue to grow

This certification is a good fit if your Skills outline guide
responsibilities include:
• AZ-500
• Maintaining security posture.
• Identifying and remediating vulnerabilities
by using a variety of security tools. Self-paced online learning
Microsoft Learn
• Implementing threat protection.
Instructor-led training
• Responding to security incidentescalations.
Course AZ-500T00:
Microsoft Azure Security
Technologies
Additional resources
• Microsoft Docs
• Azure Architecture Center
• Microsoft Official Exam AZ-500 Explore this
Practice Test AZ-500 Microsoft Azure resource next
Security Technologies
• Microsoft Azure
Well-Architected
Framework
Microsoft Certified:
Azure Security Engineer
Associate
Azure Security Engineers
implement security controls
and threat protection, manage
identity and access, and
protect data, applications, and
networks in cloud and hybrid
environments as part of an
end-to-end infrastructure.

First, make sure your skills are up to date.

Need to update your skills in

Azure administration?
Azure Administrator training
on Microsoft Learn.

© 2021 Microsoft Corporation. All rights reserved. Watch the Azure certifications overview video
Learning path for Microsoft Certified:

Azure Security Engineer Associate

Azure Security Engineers implement security controls and threat protection, manage identity and access, and protect data, applications, and networks in cloud and hybrid environments as part
of an end-to-end infrastructure. Explore recommended training resources that will help you prepare for required exams.

Instructor-led
training
Microsoft Azure Security Technologies
AZ-500T00 | 5 days

Exam AZ-500
Microsoft Azure
Security Technologies
Pass certification
exam AZ-500 to
earn this certification

Secure your cloud Implement network Manage identity Microsoft Certified:

applications in Azure security in Azure and access in Azure Azure Security
6 modules 5 modules Active Directory Engineer Associate
9 modules
Self-paced online
training on
Microsoft Learn Implement resource Implement virtual Manage security
management machine host operations in Azure
security in Azure security in Azure 8 modules
6 modules 6 modules

© 2021 Microsoft Corporation. All rights reserved. Find a Learning Partner Watch the Azure certifications overview video
Overview of Microsoft Certified:
Get started at
Microsoft 365 Security Administrator Associate aka.ms/M365Certs_SecurityAdmin

Who is this Exam details Certification

certification for?
The Microsoft 365 Security Administrator collaborates MS-500: Pass certification exam MS-500 to
Microsoft 365 Security Administration earn this certification
with the Microsoft 365 Enterprise Administrator,
business stakeholders, and other workload
Skills measured:
administrators to plan and implement security
strategies and to ensure the solutions comply with • Implement and manage identity and access

the organization’s policies and regulations. This • Implement and manage threat protection
role proactively secures Microsoft 365 enterprise • Implement and manage information protection
Microsoft 365 Certified:
environments. Responsibilities include responding • Manage governance and compliance features in Security Administrator Associate
to threats, implementing, managing, and monitoring Microsoft 365
Microsoft 365 Security
security and compliance solutions for the Microsoft 365 Administrators proactively secure
environment. Security Administrators respond to incidents, Knowledge and experience: Microsoft 365 enterprise and hybrid
investigations, and enforcement of data governance. environments, implement and
This exam measures your ability to accomplish the
manage security and compliance
The Microsoft 365 Security Administrator is familiar following technical tasks: implement and manage
solutions, respond to threats, and
identity and access; implement and manage threat
with Microsoft 365 workloads and hybrid environments. enforce data governance.
protection; implement and manage information
This role has strong skills and experience with identity protection; and manage governance and compliance
protection, information protection, threat protection, features in Microsoft 365.
security management, and data governance.

© 2021 Microsoft Corporation. All rights reserved.

The journey to Microsoft Certified:
Get started at
Microsoft 365 Security Administrator Associate aka.ms/M365Certs_SecurityAdmin

Start here
Decide if this is the right
certification for you Not right for you? Upskill with recommended training Pass exams Continue to grow

This certification is a good fit if: Master the basics with Skills outline guide Take a practice exam Explore these
Fundamentals certifications certifications next
• You’re an administrator or an
IT professional. • Microsoft 365 Fundamentals Self-paced Pass required exam to
online learning Other tracks (Associate)
earn your certification
OR OR Microsoft Learn • Microsoft 365 Messaging
Exam MS-500 Administrator Associate
• You’re responsible for activities Browse all Microsoft 365 OR Microsoft 365 Security Microsoft 365 Certified:
including identity protection, certifications Administration • Microsoft 365 Modern
Instructor-led training Security Administrator
information protection, threat Desktop Administrator
Course MS-500T00-A: Associate
protection, security management, Associate
and data governance; you Microsoft 365 Security
Microsoft 365 Security
implement, manage, and monitor Administration (4 days) • Microsoft 365 Teams
Administrators proactively
security and compliance solutions secure Microsoft 365 enterprise Administrator Associate
for Microsoft 365 and hybrid and hybrid environments,
environments; you collaborate Next level (Expert)
implement and manage
with the enterprise administrators, security and compliance • Microsoft 365 Enterprise
business stakeholders, and other solutions, respond to threats, Administrator Expert
workload administrators to plan and enforce data governance.
and implement security strategies
to ensure that solutions comply
with the policies and regulations of
the organization.

© 2021 Microsoft Corporation. All rights reserved.

Training and preparation for Microsoft 365 Certified:

Microsoft 365 Security Administrator Associate

Microsoft 365 Security Administrators proactively secure M365 enterprise and hybrid environments, implement and manage security and compliance solutions, respond to threats, and enforce
data governance.

Refer to the following links for recommended training resources that will help you prepare for required exams and earn your certification.

Instructor-led
Training
Microsoft 365 Security
Administration
MS-500T00 | 4 days

Pass certification exam MS-500

MS-500 Exam › to earn this certification

Microsoft 365 Certified:

MS-500
Protect identity and access Defend against threats with Protect enterprise Manage security
Microsoft 365 Security Security Administrator
with Microsoft 365 Microsoft 365 and Microsoft information with with Microsoft 365 Associate
threat protection Microsoft 365 Administration
5 modules 4 modules
Self-paced online 3 modules 5 modules
training on
Microsoft Learn

Connect with communities Microsoft 365 Microsoft Teams Office 365

Find a Learning Partner View all Microsoft Certifications

© 2021 Microsoft Corporation. All rights reserved. aka.ms/LearningPartner Microsoft.com/Certification
 Overview of Microsoft Certified:
Get started at
Security Operations Analyst Associate aka.ms/SecurityCerts_OperationsAnalyst

Who is this Exam details Certification

certification for? Products featured
Do you collaborate with organizational SC-200: Pass certification exam SC-200 • Microsoft 365 Defender
Microsoft Security Operations Analyst to earn this certification
stakeholders to secure information technology
• Azure Defender
systems for the organization and reduce
Skills measured: • Azure Sentinel
organizational risk by rapidly remediating
• Mitigate threats using Microsoft 365 Defender
active attacks in the environment? Do you
advise on improvements to threat protection • Mitigate threats using Azure Defender

practices and refer violations of organizational • Mitigate threats using Azure Sentinel
Microsoft Certified:
policies to appropriate stakeholders? Do you Security Operations Analyst Associate
Knowledge and experience:
investigate, respond to, and hunt for threats The Microsoft Security Operations
Candidates for this exam should have foundational
using Microsoft Azure Sentinel, Azure Defender, knowledge of Microsoft 365 and Azure. They Analyst collaborates with organizational
Microsoft 365 Defender, and third-party should be familiar with cybersecurity threat stakeholders to secure information
mitigation and response concepts. technology systems for the
security products? Welcome to the world of organization. Their goal is to reduce
Security Operations Analyst. organizational risk by rapidly
remediating active attacks in the
environment, advising on
improvements to threat protection
practices, and referring violations of
organizational policies to appropriate
stakeholders.

© 2021 Microsoft Corporation. All rights reserved. Find a Learning Partner

The journey to Microsoft Certified:
Get started at
Security Operations Analyst Associate aka.ms/SecurityCerts_OperationsAnalyst

Start here
Decide if this is the right Upskill with recommended Pass required exam to
certification for you training and experience earn your certification

This certification is a good fit if your Skills outline guide Exam SC-200
responsibilities include: Microsoft Security
• SC-200
• Collaborating with organizational Operations Analyst
stakeholders to secure information
technology systems
• Identifying and remediating vulnerabilities
Self-paced online learning Microsoft Certified:
• Advising on improvements to threat Microsoft Learn Security Operations Analyst
protection practices Associate
• Investigating, responding to, and hunting The Microsoft Security Operations
for threats Analyst collaborates with
organizational stakeholders to
Additional resources secure information technology
• Microsoft Security systems for the organization. Their
Technical Content Library goal is to reduce organizational risk
• Azure Active Directory on by rapidly remediating active attacks
Tech Community in the environment, advising on
First, make sure your skills are up to date. improvements to threat protection
practices, and referring violations of
Need to update your skills in security organizational policies to
operations analysis? appropriate stakeholders.
Security Operations Analyst Associate
training on Microsoft Learn.

© 2021 Microsoft Corporation. All rights reserved. Find a Learning Partner

Learning path for Microsoft Certified:

Security Operations Analyst Associate

The Microsoft Security Operations Analyst collaborates with organizational stakeholders to secure information technology systems for the organization. Their goal is to reduce organizational risk
by rapidly remediating active attacks in the environment, advising on improvements to threat protection practices, and referring violations of organizational policies to appropriate stakeholders.

Mitigate threats using Microsoft Configure your Azure Exam SC-200

Defender for Endpoint Sentinel environment Microsoft Security
Learning Path Learning Path Operations Analyst

Mitigate threats using Create detections and

Azure Defender perform investigations
Learning Path using Azure Sentinel
Learning Path
Self-paced online Pass certification
training on exam SC-200 to
Microsoft Learn earn this certification

Create queries for Azure Perform threat hunting in Microsoft Certified:

Sentinel using Kusto Azure Sentinel Security Operations
Query Language (KQL) Learning Path Analyst Associate
Learning Path
Mitigate threats using Connect logs to
Microsoft 365 Defender Azure Sentinel
Learning Path Learning Path

© 2021 Microsoft Corporation. All rights reserved. Find a Learning Partner

Overview of Microsoft Certified:
Get started at
Identity and Access Administrator Associate aka.ms/SecurityCerts_IdentityAccessAdmin

Exam details Certification

Who is this
certification for? Products featured
SC-300: Pass certification exam SC-300
Do you design, implement, and operate Microsoft Identity and Access Administrator to earn this certification • Azure Active Directory
an organization’s identity and access
management systems by using Azure Skills measured:
AD? Do you manage tasks such as • Implement an Identity Management Solution
providing secure authentication and • Implement an Authentication and Access
authorization access to enterprise Management Solution
applications? Do you troubleshoot, Microsoft Certified:
• Implement Access Management for Apps
Identity and Access
monitor, and report the identity and • Plan and Implement an Identity Governance Administrator Associate
access environment? If so, you are the Strategy
The Identity and Access Administrator
right person to be taking the new Knowledge and experience: may be a single individual or a member
Microsoft Security Identity and Access of a larger team. This role collaborates
A candidate for this exam should have previous
with many other roles in the
exam. knowledge of Azure Active Directory, either on-
premises or in the cloud. An understanding of
organization to drive strategic identity
security concepts like Zero Trusty and Least Access projects to modernize identity solutions,
Privilege are a plus. Candidates should have strong to implement hybrid identity solutions,
familiarity with Microsoft cloud capabilities, and to implement identity governance.
products, and services.

© 2021 Microsoft Corporation. All rights reserved. Find a Learning Partner

The journey to Microsoft Certified:
Get started at
Identity and Access Administrator Associate aka.ms/SecurityCerts_IdentityAccessAdmin

Start here
Decide if this is the right Upskill with recommended Pass required exam to
certification for you training and experience earn your certification

This certification is a good fit if your Skills outline guide Exam SC-300
responsibilities include: Microsoft Identity and
• SC-300
• designing, implementing, and operating an Access Administrator
organization’s identity and access
management systems
• providing secure authentication and
Self-paced online learning Microsoft Certified:
authorization access to enterprise
Microsoft Learn Identity and Access
applications
Administrator Associate
• troubleshooting, monitoring, and reporting
of an identity and access environment The Identity and Access
Administrator may be a single
individual or a member of a
Additional resources
larger team. This role
• Microsoft Security collaborates with many other
Technical Content Library roles in the organization to drive
• Azure Active Directory on strategic identity projects to
Tech Community modernize identity solutions, to
First, make sure your skills are up to date. implement hybrid identity
solutions, and to implement
Need to update your skills in identity and identity governance.
access administration?
Identity and Access Administrator
Associate training on Microsoft Learn.

© 2021 Microsoft Corporation. All rights reserved. Find a Learning Partner

Learning path for Microsoft Certified:

Identity and Access Administrator Associate

The Identity and Access Administrator may be a single individual or a member of a larger team. This role collaborates with many other roles in the organization to drive strategic identity projects
to modernize identity solutions, to implement hybrid identity solutions, and to implement identity governance.

Implement an Identity Implement Access

Management solution Management for Apps Exam SC-300
Learning Path Learning Path Microsoft Identity and
Access Administrator
Self-paced online Pass certification exam
training on SC-300 to
Microsoft Learn earn this certification
Implement an Authentication Plan and Implement an
and Access Management solution Identity Governance Strategy Microsoft Certified:
Learning Path Learning Path Identity and Access
Administrator
Associate

© 2021 Microsoft Corporation. All rights reserved. Find a Learning Partner

Overview of Microsoft Certified:

Information Protection Administrator Associate

Get started at
aka.ms/SecurityCerts_InformationProtectionAdmin

Exam details Certification

Who is this
certification for? Products featured
SC-400: Pass certification exam SC-400
The Information Protection Administrator Microsoft Information Protection Administrator to earn this certification • Microsoft 365

plans and implements controls that meet • Microsoft Cloud App Security
organizational compliance needs. This Skills measured: • Microsoft Teams
person is responsible for translating • Implement Information Protection • Microsoft SharePoint
requirements and compliance controls • Implement Data Loss Prevention
into technical implementation. They assist
• Implement Information Governance
organizational control owners to become Microsoft Certified:
Information Protection
and stay compliant. They work with Knowledge and experience: Administrator Associate
information technology (IT) personnel, A candidate for this exam should have a The Information Protection
business application owners, human foundational knowledge of Microsoft security and Administrator defines applicable
compliance technologies, as well as basic requirements and tests IT processes
resources, and legal stakeholders to
knowledge of information protection concepts. and operations against those policies
implement technology that supports
and controls. They are responsible for
policies and controls necessary to creating policies and rules for content
sufficiently address regulatory classification, data loss prevention,
governance, and protection.
requirements for their organization.

© 2021 Microsoft Corporation. All rights reserved. Find a Learning Partner

The journey to Microsoft Certified:

Information Protection Administrator Associate

Get started at
aka.ms/SecurityCerts_InformationProtectionAdmin

Start here
Decide if this is the right Upskill with recommended Pass required exam to
certification for you training and experience earn your certification

This certification is a good fit if your Skills outline guide Exam SC-400
responsibilities include: Microsoft Information
• SC-400
• planning and implement controls to meet Protection Administrator
organizational compliance needs
• translating requirements and compliance
controls into technical implementation
Self-paced online learning Microsoft Certified:
• implementing technology sufficiently Microsoft Learn Information Protection
address regulatory requirements Administrator Associate
• defining requirements, testing IT processes The Information Protection
and operations to create policies and rules Administrator defines applicable
for content classification, data loss requirements and tests IT
prevention, governance, and protection Additional resources processes and operations against
• Microsoft Security those policies and controls. They
Technical Content Library are responsible for creating
• Azure Active Directory on policies and rules for content
Tech Community classification, data loss prevention,
governance, and protection.
First, make sure your skills are up to date.

Need to update your skills in information

protection administration?
Information Protection Administrator
Associate training on Microsoft Learn.

© 2021 Microsoft Corporation. All rights reserved. Find a Learning Partner

Learning path for Microsoft Certified:

Information Protection Administrator Associate

The Information Protection Administrator defines applicable requirements and tests IT processes and operations against those policies and controls. They are responsible for creating policies
and rules for content classification, data loss prevention, governance, and protection.

Implement Information Implement Information

Protection in Microsoft 365 Governance in Microsoft 365
Learning Path Learning Path

Pass certification exam

Self-paced online
SC-400 to
training on
earn this certification
Microsoft Learn
Implement Data Exam SC-400
Loss Prevention Microsoft Information Microsoft Certified:
Learning Path Protection Administrator Information Protection
Administrator
Associate

© 2021 Microsoft Corporation. All rights reserved. Find a Learning Partner

Resources

Microsoft.com/Learn aka.ms/PracticeTests aka.ms/TrainCertPoster

aka.ms/LearningPartners aka.ms/LearnFAQ aka.ms/MCPForum

aka.ms/LearnSCItechcontentlibrary
aka.ms/LearnSCITechCommunity aka.ms/MicrosoftLearnBlog

Stay connected

Microsoft Security on Twitter Microsoft Security on LinkedIn