L’équipe Microsoft Defender ATP a publié un billet visant à créer une formation complète sur Microsoft Defender Advanced Threat Protection allant jusqu’à un niveau d’expertise. On retrouve notamment :
Security Operations Fundamentals
- Module 1. Technical overview
- Module 2. Getting started
- Module 3. Threat and vulnerability management
- Module 4. Attack surface reduction
- Module 5. Next generation protection
- Module 6. Investigation – Incident
- Module 7. Alert handling
- Module 8. Automated investigation and remediation
- Module 9. Microsoft Threat Experts
- Module 10. Reporting
- Module 11. Evaluation Lab
Security Operations Intermediate
- Module 1. Architecture
- Module 2. Threat and vulnerability management
- Module 3. Next generation protection.
- Module 4. Advanced hunting
- Module 5. Automated investigation and remediation
- Module 6. Threat analytics
- Module 7. Unified indicators of compromise (IOCs)
- Module 8. Evaluation lab
- Module 9. Community (blogs, webinars, GitHub)
- Module 1. Responding to threats
- Module 2. Alert handling
- Module 3. Deep file analysis
- Module 4. Advanced hunting
- Module 5. Unified indicators of compromise IOCs
- Module 6. Custom reporting
- Module 7. Community (blogs, webinars, GitHub)
Security Administrator Fundamentals
- Module 1. Architecture
- Module 2. Onboarding
- Module 3. Grant and control access
- Module 4. Security configuration
- Module 5. Reporting
- Module 6. SIEM Integration
Security Administrator Intermediate
- Module 1. Threat and vulnerability management (TVM)
- Module 2. Attack surface reduction
- Module 3. Next generation protection
- Module 4. Advanced hunting
- Module 5. Conditional access
- Module 6. Microsoft Cloud App Security (MCAS)
- Module 7. Community (blogs, webinars, GitHub)
Accéder à Microsoft Defender ATP Ninja training
