The Microsoft security operations analyst collaborates with organizational stakeholders to secure information technology systems for the organization. Their goal is to reduce organizational risk by rapidly remediating active attacks in the environment, advising on improvements to threat protection practices, and referring violations of organizational policies to appropriate stakeholders.
Responsibilities include threat management, monitoring, and response by using a variety of security solutions across their environment. The role primarily investigates, responds to, and hunts for threats using Microsoft Sentinel, Microsoft Defender for Cloud, Microsoft 365 Defender, and third-party security products. Since the security operations analyst consumes the operational output of these tools, they are also a critical stakeholder in the configuration and deployment of these technologies.
- This list contains the skills measured on the exam associated with this certification. For more detailed information, visit the exam details page and download the study guide.
- Mitigate threats using Microsoft 365 Defender
- Mitigate threats using Microsoft Defender for Cloud
- Mitigate threats using Microsoft Sentinel
Job role: Security Engineer, Security Operations Analyst
Required exams: SC-200
Monday & Wednesday
Tuesday & Thursday
18:15 – 21:15
Live Online Training
- Lectures 0
- Quizzes 0
- Duration 310 hours
- Skill level All levels
- Language English
- Students 10
- Certificate No
- Assessments Yes