Advance your knowledge of architecting and evaluating cybersecurity services to tackle day-to-day challenges
What’s inside
- Thorough explanations of all topics covered in the SC-100 exam
- Practical examples that will help you put your new knowledge to work
- A walkthrough of designing zero-trust architecture and strategies for data, applications, access management, identity, and infrastructure
You'll get the most out of this book if
- You're part of a wide variety of cybersecurity professionals – from security engineers and cybersecurity architects to Microsoft 365 administrators, user and identity administrators, infrastructure administrators, cloud security engineers, and other IT professionals preparing to take the SC-100 exam
- You're currently designing cybersecurity architecture, but not nrcessarily preparing for the exam
- You have a solid understanding of the fundamental services within Microsoft 365, and Azure, along with knowledge of security, compliance, and identity capabilities in Microsoft and hybrid architectures
What your journey will look like
Complete with hands-on tutorials, projects, and self-assessment questions, this book will equip you with everything you need to pass the SC-100 exam.
As you progress, you'll go through designing a strategy for a cybersecurity architecture and evaluating the governance, risk, and compliance (GRC) of the architecture. This will include cloud-only and hybrid infrastructures, where you'll learn how to protect using the principles of zero trust, along with evaluating security operations and the overall security posture.
To make sure that you are able to take the SC-100 exam with confidence, the last chapter of this book will let you test your knowledge with a mock exam and practice questions.
By the end of this book, you'll have the knowledge you need to plan, design, and evaluate cybersecurity for Microsoft cloud and hybrid infrastructures, and pass the SC-100 exam with flying colors.
What you will learn
- How to design a zero-trust strategy and architecture
- Evaluation of GRC technical strategies and security operations strategies
- How to design security for infrastructure
- How to develop a strategy for data and applications
- Everything you need to pass the SC-100 exam with ease
- How to leverage mock exams and sample questions to prepare for the structure of the exam
Table of Contents
- Cybersecurity in the Cloud
- Building an Overall Security Strategy and Architecture
- Designing a Security Operations Strategy
- Designing an Identity Security Strategy
- Designing a Regulatory Compliance Strategy
- Evaluating the Security Posture and Recommending Technical Strategies to Manage Risk
- Designing a Strategy for Securing Server and Client Endpoints
- Designing a Strategy for Securing SaaS, PaaS, and IaaS
- Specifying Security Requirements for Applications
- Designing a Strategy for Securing Data
- Case Study Responses and Final Assessment/Mock Exam
- Appendix: Preparing for Your Microsoft Exam
Dwayne Natwick is a Cloud Training Architect Lead at Opsgility, a Microsoft CSP. He has been in IT, security design, and architecture for over 30 years. His love of teaching led him to become a Microsoft Certified Trainer (MCT) Regional Lead and a Microsoft Most Valuable Professional (MVP).
Dwayne has a master’s degree in Business IT from Walsh College, the CISSP from ISC2, and 18 Microsoft certifications, including Identity and Access Administrator, Azure Security Engineer, and Microsoft 365 Security Administrator. Dwayne can be found providing and sharing information on social media, industry conferences, his blog site, and his YouTube channel.
Originally from Maryland, Dwayne currently resides in Michigan with his wife and three children.
