Program Overview
The Cloudzee Security Operations Analyst Program is designed to equip professionals with the skills to detect, investigate, respond to, and hunt for threats using Microsoft’s advanced security solutions.
Participants will gain hands-on experience with:
- Microsoft Sentinel
- Microsoft Defender XDR
- Microsoft Defender for Endpoint & Cloud
- Microsoft Purview
- Kusto Query Language (KQL) for threat detection and reporting
This course prepares learners for the SC-200 certification and enables them to reduce organizational risk through proactive threat management and incident response.
Target Audience
Ideal for professionals in roles such as:
- Security Operations Analysts
- SOC Engineers
- Threat Hunters
- IT Security Consultants
- Cloud Security Engineers
- Compliance & Risk Analysts
- Technical Decision Makers in Security
Course Modules
Module 1: Threat Mitigation with Microsoft Defender XDR
- Configure and manage Microsoft Defender XDR
- Detect and respond to threats across endpoints, identities, email, and applications
- Integrate Defender XDR with other security tools
- Analyze incidents and alerts
Module 2: Threat Mitigation with Microsoft Defender for Endpoint
- Configure Defender for Endpoint policies
- Monitor endpoint activity and threat signals
- Investigate alerts and incidents
- Perform threat hunting and remediation
Module 3: Threat Mitigation with Microsoft Defender for Cloud
- Secure cloud workloads across Azure, AWS, and GCP
- Configure Defender for Cloud policies and recommendations
- Monitor compliance and threat signals
- Respond to cloud-based threats
Module 4: Threat Mitigation with Microsoft Purview
- Manage data governance and compliance
- Monitor sensitive data access and usage
- Configure Purview policies for threat detection
- Integrate with other Microsoft security tools
Module 5: Threat Detection and Response with Microsoft Sentinel
- Configure Microsoft Sentinel environment
- Connect data sources and manage logs
- Create and run KQL queries for threat detection
- Build analytics rules and playbooks
- Perform incident investigation and threat hunting