Design a security operations strategy

Security Engineer
Solution Architect
Microsoft Defender for Endpoint
Microsoft Sentinel
Microsoft Defender for Threat Intelligence

Learn how to design a cybersecurity strategy for security operations (SecOps).

Learning objectives

Upon completion of this module, the learner will be able to:

  • Design a logging and auditing security strategy.
  • Develop security operations for hybrid and multicloud environments.
  • Design a strategy for Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR).
  • Evaluate security workflows.
  • Review security strategies for incident management.
  • Evaluate security operations for technical threat intelligence.
  • Monitor sources for insights on threats and mitigations.


  • Conceptual knowledge of security policies, requirements, zero trust architecture, and management of hybrid environments.
  • Working experience with zero trust strategies, applying security policies, and developing security requirements based on business goals.