SC-200 Microsoft Security Operations Analyst

Learn all about Microsoft security services, Microsoft Sentinel, KQL, Microsoft 365 Defender suite and get certified

4.53 (900 reviews)

Udemy

platform

English

language

Network & Security

What you will learn

Explain how Microsoft Defender for Endpoint can remediate risks in your environment

Create a Microsoft Defender for Endpoint environment

Configure Attack Surface Reduction rules on Windows devices

Configure alert settings in Microsoft Defender for Endpoint

Conduct advanced hunting in Microsoft 365 Defender

Manage incidents in Microsoft 365 Defender

Investigate DLP alerts in Microsoft Defender for Cloud Apps

Explain the types of actions you can take on an insider risk management case

Configure Microsoft Defender for Cloud

Remediate alerts in Microsoft Defender for Cloud

Construct Kusto Query Language (KQL) statements

Extract data from unstructured string fields using KQL

Manage a Microsoft Sentinel workspace

Use KQL to access the watchlist in Microsoft Sentinel

Manage threat indicators in Microsoft Sentinel

Configure different data sources in Microsoft Sentinel

Why take this course?

This course is a complete preparation for the SC-200 exam. ( Including hands-on Labs)

The Microsoft Security Operations Analyst collaborates with organizational stakeholders to secure information technology systems for the organization. Their goal is to reduce organizational risk by rapidly remediating active attacks in the environment, advising on improvements to threat protection practices, and referring violations of organizational policies to appropriate stakeholders.

Responsibilities include threat management, monitoring, and response by using a variety of security solutions across their environment. The role primarily investigates, responds to, and hunts for threats using Microsoft Sentinel, Microsoft Defender for Cloud, Microsoft 365 Defender, and third-party security products. Since the Security Operations Analyst consumes the operational output of these tools, they are also a critical stakeholder in the configuration and deployment of these technologies.

Don't be left behind. Be ahead of the curve by getting certified as a Microsoft Security Operations Analyst, and be ready for the opportunity to advance your career in Cybersecurity.

All video lectures will cover all SC-200 exam topics and include hands on demonstrations on each topic.

The course has been structured to follow the exact official Microsoft training plan. So if you want to pass your exam on your first attempt hit the enroll button now and you will get:

· Video lectures on each topic of the exam with demos that fully prepare you for your exam as well as ensuring you can administer all Microsoft security services and tools like a Pro

· Review questions at the end of each section (quizz) to test your knowledge on the topics learned in the section

· LABS at the end of each section. The labs follow the official Microsoft training labs and they are designed so you can practice yourself at your own pace when you aren't watching the videos. You will have step-by-step instructions available to complete each lab and instructions to prepare your lab environment and deploy the necesarry resources for the labs.

· Interactive pre-recorded demonstrations on some of the topics that cannot be covered in the lab environment

· Links to official Microsoft resources/blogs/videos for further documentation available for each lesson on each topic

This course curriculum follows the Microsoft's SC-200 exam study areas:

· Mitigate threats using Microsoft 365 Defender (25-30%)

· Mitigate threats using Microsoft Defender for Cloud (25-30%)

· Mitigate threats using Microsoft Sentinel (40-45%)

Microsoft, Windows, Microsoft 365 and Microsoft Azure are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. This course is not certified, accredited, affiliated with, nor endorsed by Microsoft Corporation.

Screenshots

SC-200 Microsoft Security Operations Analyst - Screenshot_01

SC-200 Microsoft Security Operations Analyst - Screenshot_02

SC-200 Microsoft Security Operations Analyst - Screenshot_03

SC-200 Microsoft Security Operations Analyst - Screenshot_04

Reviews

Koichi

October 19, 2023

Each topics are explained very well and easy to understand. However, there is too few demonstration. It's hard to understand how to configure various Sentinel features actually. I suppose SC-200 mainly covers Microsoft product specific features, does not cover general conception of cyber security topics. This learning course should more focus on actual procedures about how to configure Defender and Sentinel features.

Liam

May 31, 2023

To soon to say. However I like the approach the instructor has outlined. It aligns with the way I like to learn

Aaron

May 24, 2023

To many survey's kinda disruptive, still need more time to evaluate before asked again for the 6th time tbh! Not a true representation of what's learned or taught as it's only the 3rd section with lot's of information to absorb.

Michael

March 13, 2023

Thorough and informative. Had issues with labs which was disappointing, but thought the supporting information and resources were significant and relevant. Solid training.

Yevhenii

March 5, 2023

The information provided in this course is mainly based on the "SC-200T00-A - Microsoft Security Operations Analyst" exam preparation book. I expected more practical and hands-on materials (in addition to labs), but, nevertheless, I have got an overall good impression from this course.

Emmanuel

January 2, 2023

The instructions where good but I will advise you do the initial lab setup while preparing the training. The steps of creating the free trial, uploading users to O365 etc.

Epameinondas

November 18, 2022

It was good, but it could have been better. In general i did not find it very professional that the tutor recorded the sessions in one take. In some there were sound issues also. The labs were good but again the instructions were not clear all the time. So I had to find solutions that took extra time. Also i could not manage to create a free azure account and did not go through the last labs due to the cost.

Ronald

October 21, 2022

It's very difficult to listen and comprehend what Christian is saying sometimes. I often have to replay the course or rewind.

Nathan

August 25, 2022

Found too much material to be exactly the same as MS Learn paths. Needed more custom demonstrations.

Carlos

August 21, 2022

I appreciate the time he took to make these videos. Unfortunately, it was somewhat lazy.... he took the information and slapped it on a PowerPoint, and read an instructor document. Personally speaking you can read the learning path yourself and just pass the test by looking at youtube videos with labs.

Bradley

August 20, 2022

Had to stop the course due to the awful audio quality. Please re-record the audio for the SC-200 course.

Miroslav

August 16, 2022

The course in overall is great, just note to the labs, they're not prepared with all we need and it takes much more time to finish them (as in the course, only length of video is calculated). Also, some attack results could not be reviewed, although repeated (WIN2 machine Lab section 8). Thank you for this course, I'm other step forward in my career shift.

Gary

August 8, 2022

It was good... Could've been a little more detailed on the notepad about how to use the replace command in excel to replace your domain for all users simultaneously. Everyone doesn't know that and could save people more time. Other than that, it was a good course.

Fishani

August 7, 2022

So explanations are clear and well understood but I cannot give five stars as in life there is always room to improve

Olivier

July 30, 2022

Le son est affreux. Impossible d'écouter dans un casque par exemple. J'ai acheté un autre cours à la place.

Charts

Price

Rating

Enrollment distribution

SC-200 Microsoft Security Operations Analyst - Distribution chart