Overview
We power your Microsoft 365 security capabilities through our immersive 2-day course featuring hands on labs. Learn Offensive and defensive skills to secure Microsoft 365 environments, ensuring you are equipped and ready to handle security issues from a typical cyber kill chain. Your future. Our passion. Let’s go!
This course covers Microsoft 365 security features pertaining to various Microsoft 365 subscriptions: Business, E3, E5
The event contains 3 modules:
- Infrastructure protection — Protecting Domain Infrastructure using Microsoft 365 components.
- Don't pay a Ransom — Protect and recover your data from ransomware attacks.
- Data leakage prevention — protecting corporate data from unintentional or intentional sharing
Target Audience
- Security Professionals
- Microsoft 365 IT Professionals
- Anyone who has an interest in how to make their Microsoft-based organization more secure with Microsoft 365
Practical Labs- During the course students will create a trial free Microsoft 365 environment, which they will populate with data then implement the security features
Prerequisites
Working knowledge of Microsoft 365 technologies.
Instructors will demonstrate features throughout the event. Optional Lab exercises are available for students to complete within a delegate created free trial tenancy. Microsoft may require a valid credit card to create 30 day free tenancies which must be cancelled within 30 days to avoid incurring charges. QA have no control over the Microsoft 365 trial tenancy signup or billing process.
Delegates will learn how to
Delegates will learn and deploy both offensive/defensive methods to secure Microsoft 365 deployments. This course covers Microsoft 365 security features pertaining to various Microsoft 365 subscriptions; Business, E3, E5.
The event contains 3 modules:
- Infrastructure protection — Protecting Domain Infrastructure using Microsoft 365 components.
- Don't pay a Ransom — Protect and recover your data from ransomware attacks.
- Data leakage prevention — Protecting corporate data from unintentional or intentional sharing
Outline
Module 1 – Infrastructure Protection
- Introduction to Microsoft 365
- Demo: From Phishing to Domain Admins
- Demo: Getting Root in Linux
- Preventing Overpass-the-Hash attack
- Configuring Windows Defender Credentials Guard
- Performing and Preventing Pass-the-Ticket attack
- Detecting Active Directory attacks with User Behaviour Analytics
- Configuring Microsoft Defender for Identities
- Advanced Endpoint Protection from the Cloud
- Configuring Windows Defender for Endpoints
Lab 1.1. Exploring Defender for Identity
Lab 1.2. Configuring Windows Defender for Endpoints
(Optional) Lab 1.3. Cybersecurity challenge
Module 2 - Don't pay Ransom
- Demo: Ransomware attack
- Stop phishing using Defender for Office 365
- Mastering whitelisting with AppLocker
- Whitelisting on steroids
- Attack Surface Reduction rules
- Docs protection with Controlled Folder Access
- Windows Defender Application Guard - Rock-solid Browser
- OneDrive for Business. Complete Recovery
- Tuning Windows Defender Antivirus
Lab 2.1. Configuring and testing Defender for Office 365 with sample ransomware
Lab 2.2. Configuring Windows Defender Controlled Folder Access
Module 3 - Data leakage prevention
- Endpoint Attacks with Physical Access
- Device Protection. Configuring Bitlocker
- Attacks on Mobile Devices
- Mobile devices protection using Microsoft Endpoint Manager
- Protect data in the Cloud with Conditional Access & Defender for Cloud Apps
- User’s documents protection with Sensitivity Labels
Lab 3.1 Configuring Azure AD Conditional Access
Lab 3.2 Exploring Defender for Cloud Apps
Microsoft 365 learning pathways
= Required
= Certification
Frequently asked questions
See all of our FAQsHow can I create an account on myQA.com?
There are a number of ways to create an account. If you are a self-funder, simply select the "Create account" option on the login page.
If you have been booked onto a course by your company, you will receive a confirmation email. From this email, select "Sign into myQA" and you will be taken to the "Create account" page. Complete all of the details and select "Create account".
If you have the booking number you can also go here and select the "I have a booking number" option. Enter the booking reference and your surname. If the details match, you will be taken to the "Create account" page from where you can enter your details and confirm your account.
Find more answers to frequently asked questions in our FAQs: Bookings & Cancellations page.
How do QA’s virtual classroom courses work?
Our virtual classroom courses allow you to access award-winning classroom training, without leaving your home or office. Our learning professionals are specially trained on how to interact with remote attendees and our remote labs ensure all participants can take part in hands-on exercises wherever they are.
We use the WebEx video conferencing platform by Cisco. Before you book, check that you meet the WebEx system requirements and run a test meeting (more details in the link below) to ensure the software is compatible with your firewall settings. If it doesn’t work, try adjusting your settings or contact your IT department about permitting the website.
Learn more about our Virtual Classrooms.
How do QA’s online courses work?
QA online courses, also commonly known as distance learning courses or elearning courses, take the form of interactive software designed for individual learning, but you will also have access to full support from our subject-matter experts for the duration of your course. When you book a QA online learning course you will receive immediate access to it through our e-learning platform and you can start to learn straight away, from any compatible device. Access to the online learning platform is valid for one year from the booking date.
All courses are built around case studies and presented in an engaging format, which includes storytelling elements, video, audio and humour. Every case study is supported by sample documents and a collection of Knowledge Nuggets that provide more in-depth detail on the wider processes.
Learn more about QA’s online courses.
When will I receive my joining instructions?
Joining instructions for QA courses are sent two weeks prior to the course start date, or immediately if the booking is confirmed within this timeframe. For course bookings made via QA but delivered by a third-party supplier, joining instructions are sent to attendees prior to the training course, but timescales vary depending on each supplier’s terms. Read more FAQs.
When will I receive my certificate?
Certificates of Achievement are issued at the end the course, either as a hard copy or via email. Read more here.