Defend against cyberthreats with Microsoft Defender XDR (SC-5004)
Implement the Microsoft Defender for Endpoint environment to manage devices, perform investigations on endpoints, manage incidents in Defender XDR, and use Advanced Hunting with Kusto Query Language (KQL) to detect unique threats.
Implement the Microsoft Defender for Endpoint environment to manage devices, perform investigations on endpoints, manage incidents in Defender XDR, and use Advanced Hunting with Kusto Query Language (KQL) to detect unique threats.
More Information:
- Modality: Virtual
- Technology: Microsoft
- Difficulty: Beginner
- Duration: 1 Day
- Course Info: Download PDF
- Certificate: See Sample
Course Information
About Course:
This hands-on course teaches Security Operations Analysts how to implement Microsoft Defender XDR to detect, investigate, and mitigate cyberthreats. Learn how to deploy Microsoft Defender for Endpoint, configure security settings, manage incidents, automate responses, and use Advanced Hunting with Kusto Query Language (KQL) to identify and respond to threats in real time. Gain practical experience in securing endpoints, managing alerts, and improving your organization’s security posture.
Course Objectives:
-
Mitigate incidents using Microsoft Defender
-
Deploy the Microsoft Defender for Endpoint environment
-
Configure for alerts and detections in Microsoft Defender for Endpoi
-
Configure and manage automation using Microsoft Defender for Endpoint
-
Perform device investigations in Microsoft Defender for Endpoint
-
Defend against Cyberthreats with Microsoft Defender XDR lab exercises
Audience:
-
IT Security Professionals & Cybersecurity Engineers
-
IT / Network Administrators
Prerequisites:
-
Familiarity with Microsoft Defender for Endpoint, Microsoft 365 Defender, and Microsoft Sentinel platforms.
-
Knowledge of security concepts like threat detection, incident response, and security operations workflows