SC-200: Mitigate threats using Microsoft Defender XDR

Intermediate
Security Operations Analyst
Microsoft Defender for Cloud Apps
Microsoft Defender for Identity
Microsoft Defender for Office 365
Microsoft 365
Microsoft Defender for Endpoint
Microsoft Defender

Analyze threat data across domains and rapidly remediate threats with built-in orchestration and automation in Microsoft Defender XDR. This learning path aligns with exam SC-200: Microsoft Security Operations Analyst.

Prerequisites

  • Fundamental understanding of Microsoft security, compliance, and identity products
  • Basic understanding of Microsoft Defender XDR

Modules in this learning path

In this module, you'll learn how to use the Microsoft Defender XDR integrated threat protection suite.

Learn how the Microsoft 365 Defender portal provides a unified view of incidents from the Microsoft 365 Defender family of products.

Use the advanced detection and remediation of identity-based threats to protect your Microsoft Entra identities and applications from compromise.

Learn about the Microsoft Defender for Office 365 component of Microsoft Defender XDR.

Learn about the Microsoft Defender for Identity component of Microsoft Defender XDR.

Microsoft Defender for Cloud Apps is a cloud access security broker (CASB) that operates on multiple clouds. It provides rich visibility, control over data travel, and sophisticated analytics to identify and combat cyberthreats across all your cloud services. Learn how to use Defender for Cloud Apps in your organization.