Jean-Sébastien DUCHENE Blog's

Actualité, Tips, Articles sur l'ensemble des Technologies Microsoft (SCCM/SMS, EMS, Microsoft Intune, Microsoft Azure, Windows 10, SCOM, MDOP...)

L’équipe Cloud App Security a publié un billet visant à créer une formation complète sur Microsoft Cloud App Security allant jusqu’à un niveau d’expertise. On retrouve notamment :

Level: Beginner  (Fundamentals) (Video Introduction)

  1. Community Information
    1. MCAS Tech Community
  2. Understanding CASBs
    1. Top 20 Use Cases for CASBs (D)
    2. What is a CASB and Why Do I need one? (B)
  3. MCAS Best Practices (D)
  4. MCAS Introduction
    1. MCAS Licensing (V)*subject to change*
    1. Microsoft Cloud App Security Introduction (V)
  1. Initial Settings
    1. Configure IP Addresses (V)
    2. Import User Groups (V)
    3. Configure Admin Roles (V)
    4. Configure MSSP Access (V)
  2. Cloud Discovery
    1. Dashboard Basics (D)
    2. Discovered Apps (D)
    3. App Risk Scoring (V)
    4. MCAS App Connectors (V)
    5. Using the Cloud App Discovery Feature (V)
  3. Information Protection and Real-time Controls
    1. Connect Office 365 (V)
    2. Configure AAD with MCAS Conditional Access App Control (V)
    3. What is Conditional Access App Control? (V)
    4. Block Sensitive Information Downloads (D)
  4. Threat Detection
    1. Threat Detection Overview (V)
    2. User and Entity Behavior Analytics (V)
    3. Discover and Mange risky OAuth applications (V)

Level: Beginner (Fundamentals) Knowledge Check


Level: Intermediate (Associate) (Video Introduction

  1. Overview
    1. Microsoft Cloud App Security: Overview (V)
  2. Cloud Discovery
    1. Cloud Discovery Interactive Guide (V)
    2. Cloud Discovery Policies (D)
    3. MCAS and MDATP Integration (V)
    4. Log Collector Configuration (V)
    5. Integrate with Zscaler (D)
    6. Integrate with iboss (D)
    7. Integrate with Corrata (D)
  3. Information Protection and Real-Time Controls
    1. Connect Box, Salesforce, and GitHub to MCAS (B)
    2. Secure and Connect Github (B)
    3. Protecting Storage Apps and Malware Detection (V)
    4. Configuring a read-only mode for external users (V)
    5. Block unauthorized browsers form accessing corporate web apps (V)
    6. Using Admin Quarantine to investigate files (D)
    7. Automatically apply labels to your sensitive files (D)
    8. Information Protection Policies (D)
  4. Threat Detection
    1. Threat Policies (D)
    2. Azure Advanced Threat Protection Integration
      1. How Azure ATP integrates with MCAS (D)
    3. Detect Threats and Manage Alerts (V)
    4. Malware Hunting and Automatic Remediation (V)

Level: Intermediate (Associate) Knowledge Check


Level: Advanced (Expert) (Video Introduction)

  1. Power Automate Blog Series (B)
    1. Triage Infrequent Country Alerts using Power Automate and MCAS  (V)
    2. Request user validation to reduce your SOC workload  (V)
    3. Request for Manager Action (V)
    4. Auto-disable malicious inbox rules using MCAS & Power Automate (V)
  2. 3rd Party IdP Configuration 
    1. PingOne (D)
    2. ADFS (Coming soon!)
    3. Okta (Coming soon!)
  3. Conditional Access App Control steps for non-Microsoft SAAS applications
    1. Workplace for Facebook (V)
    2. Box (V)
    3. Slack (V)
  4. SIEM Integrations
    1. Connect Azure Sentinel (V)
    2. Azure Sentinel Entities Enrichment (Users) (V)
    3. Microsoft CAS Infrequent Country triage with Azure Sentinel and Logic Apps (V)
    4. Connect a 3rd Party SIEM (V)
  5. Advanced Scenarios and Guidance
    1. Indicators of Compromise  (V)
    2. MCAS and Microsoft Threat Protection  (V)
    3. Block Apps/Sites on iOS (Defender for Endpoint + MCAS) (V)
    4. MCAS API Documentation (D)
    5. Configuring a Log Collector behind a Proxy (D)
  6. Additional Blogs and Series
    1. Ninja Training Blog Series (B)
    2. MCAS Data Protection Blog Series (B)
    3. Securing Administrative Access to Microsoft Cloud App Security and Defender for Identities (B)
    4. Limiting Inherited Roles from Azure Active Directory in MCAS (B)
  7. Important Announcements
    1. Unified Data Loss Prevention Post Announcement (B)
    2. MCAS is removing non-secure cipher suites (B)
    3. Unified Labeling is now generally available in GCC and GCC-H environments (B)

Level: Advanced (Expert) Knowledge Check


Plus d’informations sur : The Microsoft Cloud App Security (MCAS) Ninja Training is Here! - Microsoft Tech Community

Facebook Like