Implement advanced threat protection using Microsoft Intune and Microsoft Defender
Intermediate
Administrator
Microsoft 365
Windows
Microsoft Intune
This module shows how to implement advanced threat protection across managed endpoints. You'll combine Microsoft Intune policy enforcement with Microsoft Defender to discover shadow IT, reduce the attack surface, enforce Zero Trust access, and automate remediation.
Learning objectives
By the end of this module, you'll be able to:
- Describe layered threat protection strategies that align Microsoft Intune and Microsoft Defender capabilities
- Discover and monitor cloud app usage with Microsoft Defender's SaaS app security
- Configure Attack Surface Reduction (ASR) rules in Microsoft Intune to block risky behaviors
- Apply Zero Trust principles by integrating device risk and compliance with Conditional Access
Prerequisites
- Familiarity with Microsoft Intune device management
- Basic understanding of Microsoft Defender endpoint security concepts
- Awareness of Microsoft Entra Conditional Access and device compliance