| Focus area | Why it matters | What you’ll learn |
|---|---|---|
| Microsoft recommended best practices and Microsoft Cloud Security Benchmark | Establishes a baseline of secure configurations for cloud resources | How to apply industry and Microsoft-specific best practices to your network resources |
| Defender for Cloud evaluation (Secure Score & recommendations) | Prioritizes risks and provides actionable guidance | How Secure Score is calculated and how to interpret recommendations to reduce attack surface |
| Mapping recommendations to compliance standards | Streamlines audit and compliance efforts | How Defender for Cloud links findings to standards and helps automate remediation steps |
| Monitoring, investigation, and response | Detects and contains security incidents | How to view alerts, investigate incidents, and respond using built-in workflows and playbooks |
- Understand the primary security mechanisms available to protect Azure virtual networks, including network segmentation, access control, and threat protection.
- Learn Microsoft’s cloud security best practices and the Microsoft Cloud Security Benchmark to align your environment with proven standards.
- Discover how Microsoft Defender for Cloud identifies configuration and compliance gaps and produces prioritized, actionable recommendations to improve Secure Score.
- Learn how to monitor, investigate, and respond to security alerts and incidents generated by Defender for Cloud to reduce risk and improve incident response time.
Tip: Before starting, ensure you have appropriate Azure permissions (such as Security Reader or Owner) to view Defender for Cloud recommendations and Secure Score. Familiarity with Azure networking concepts like NSGs, Azure Firewall, and virtual network peering will help you get the most from this lesson.