A brief about Microsoft Certified: Azure Security Engineer – Associate Exam AZ-500
Microsoft AZ – 500 certification focuses mostly on the security aspect of data, enterprise level computer network, cloud network, access control, threat management, cyber security and relevant issues. On 24th September, 2020; Microsoft had revised and updated the content of AZ – 500 exam, due to rapid increase of risk in security issues in the IT industry.
AZ – 500 is considered as an associate level certification from Microsoft. The demand for certified IT security professionals is increasing and AZ – 500 certification could be considered as one first step for any individual to start his/her career as an IT Security Specialists.
Target Audience of Microsoft Certified: Azure Security Engineer – Associate Exam AZ-500
IT professionals who are looking forward to developing their career as an IT Security Engineer/Consultant/Specialists must consider this certification as one of the best options to be considered as a recognized candidate for IT security related jobs. The rise of cloud computing has increased almost exponentially over the last couple of few years, due to the reliability and accessibility of data and applications. At the same time, the risk of cyber attack also increases and the demand of cyber security professionals also increases. Azure is a complete cloud based data and application services, provided and maintained by Microsoft, though Microsoft’s own data center. Individuals looking forward to working with both the IT security and cloud based technology may step in to become a Microsoft Certified AZ – 500 professional, through this exam.
Course Outline of Microsoft Certified: Azure Security Engineer – Associate Exam AZ-500
Microsoft has distributed the curriculum of AZ – 500 certification exam in four different modules. Followings are some details about the modules and distributed weight for AZ – 500 exam:
· Supervise and Control both the Access and Identity
(Weight: 20% to 25%)
I. Configure and Troubleshoot Active Directory of Azure platform
a. Developing the registration process for the Application.
b. Design, develop and deploy the permission scopes for Application Registration.
c. Monitor the permission process for registered Applications.
d. Develop and deploy multi factor validation.
e. Control the Active Directory groups in azure platform.
f. Monitor and control the Active Directory users of Azure platform.
g. Install and deploy the connectivity issues of Azure Active Directory.
h. Manage and troubleshoot the authentication process.
i. Deploy and maintain rule-based Access mechanism.
j. Design and configure the identity protection system of Azure Active Directory.
II. Develop and Manage the Identity Management Process of Azure Active Directory
a. Configure confidential access to the Azure platform.
b. Monitor the reviews of Access Control policies.
c. Initiating secured identity management process.
III. Ensuring the security of Azure Tenant
a. Shifting Azure subscription among the tenants of Azure Active Directory.
b. Control API Access to the resources and subscriptions of Azure platform.
· Deploying the protection of the platform
(Weight: 35% to 40%)
I. Deploying the security of the network
a. Design and deploy the connectivity of the virtual network.
b. Troubleshoot the Network Security Groups.
c. Design, develop and install the firewall for Azure platform.
d. Manage and troubleshoot the Front Door Services of Azure platform.
e. Install security groups for Azure Applications.
f. Install the management process for remote access.
g. Design the baseline of Azure infrastructure.
h. Design firewall for Azure resources.
II. Ensuring the security of the host
a. Ensuring the security of the endpoint within Azure virtual machine.
b. Installing the security for the virtual machine.
c. Troubleshoot the Virtual Machine in Azure Platform.
d. Install the updates for Azure Virtual Machine.
e. Design the baseline for Azure platform.
III. Controlling the security of the container
a. Troubleshoot the network.
b. Install the most appropriate authentication process for Azure platform.
c. Ensuring the isolation of the container.
d. Design the registry for Azure containers.
e. Install the processes to manage any malfunction of the system.
IV. Ensuring the management level security for Azure resources.
a. Deploying locks for Azure System.
b. Control the security of the resource group.
c. Design and deploy the policies to manage Azure platform.
d. Install customized Role-Based Access Control (RBAC) on Azure platform.
e. Manage and control the permission process for the resources and subscription of Azure platform
· Taking Care of the IT Security Issues
(Weight: 15% to 20%)
I. Controlling Security Services
a. Develop and deploy appropriate monitoring system.
b. Monitor the logging process and log retention of the system.
c. Install and configure applications for checking vulnerability.
II. Managing security policies
a. Design and develop centralized policies for management purposes, using Azure Security Center.
b. Using Azure Security Center to configure the access to the Virtual Machine
III. Configuring security alerts
a. Design, develop and deploy alerts on Azure platform.
b. Take effective and immediate action on alerts.
c. Inspect any security related incident on Azure platform.
· Ensuring the Security of Both the Data and Application
(Weight: 25% to 30%)
I. Develop policies for data and security management
a. Managing the classification of data.
b. Ensuring the retention of data.
c. Confirming the sovereignty of data.
II. Ensure the security of Data Infrastructure
a. Activating the authentication process for the database.
b. Initiating the auditing of database on Azure platform.
c. Control and Manage Advanced threat Protection for Azure SQL database.
d. Manage and control the access for storage accounts on Azure platform.
e. Install and troubleshoot key management process for Azure infrastructure.
f. Organize the authentication process for Azure Storage, using Azure Active Directory.
g. Manage and control the authentication of Azure Files for Azure Active Directory Domain Services.
h. Configure Shared Access Signature (SAS) on Azure platform.
i. Develop and manage the security policies for Azure HDInsight.
j. Manage the security policies for Cosmos DB.
k. Ensuring the security of Azure Data Lake.
III. Deploy applicable encryption method
a. Install applicable encryption process for Azure SQL Database.
b. Deploy the encryption mechanism for other databases, as well.
c. Install the encryption for storage services.
d. Deploy disk encryption mechanism.
IV. Manage and control the security for the application
a. Develop and deploy SSL/TLS certs.
b. Managing the Azure services for the protection of web based applications.
c. Design a baseline to ensure the security of the application.
V. Control the Key Vault
a. Control and monitor the access to the Key Vault.
b. Monitoring the access permission to certificates, keys and secrets.
c. Developing a Role Based Access Control (RBAC) layout for Azure Key Vault.
d. Administrating certificate and secrets on Azure platform.
e. Managing key rotation.
AZ – 500 Job Role
AZ – 500 certified professionals are usually working at the IT companies, following the positions which are mentioned below:
· Azure Technical Trainer
· Cloud Engineer
· MIS – Security
· Cloud Migration and Security Engineer
· InfoSec Specialist
· Microsoft Identity and Security Consultant
· Cloud Security Architect
· Cyber Security Solution Architect
· Senior Security Engineer
· Azure Cloud Security Engineer
· Information Security Compliance Specialist
Average Salary of AZ – 500 Certified Professionals
In general, AZ – 500 certified professionals are paid around £67,711 to £94,480, depending on the position, job description, size and workload of the company and so on.
Details About AZ – 500 Certification Exam
· Name of the exam: Microsoft Azure Security Engineer AZ-500
· Prerequisite: No particular prerequisite is there for the exam
· Total number of questions: 40 to 60
· Duration of the exam: Three hours and thirty minutes
· Exam cost: £130
Although, no particular prerequisite is there for AZ – 500 certification exam, candidates are expected to have the basic knowledge and working skill on Cloud Computing and Cyber Security. Familiarities with Azure products and services would also be considered as an added advantage for the candidates, as well.
Preparation for AZ – 500 Certification
We are offering both the instructor led and self paced online courses to make you well prepared for the certification, Designing and Implementing a Data Science Solution on Azure. We have plenty of resources, which you can access from anywhere through the internet. We are also offering practice tests, through which you will be used to know more about the pattern and the types of questions of AZ – 500 certified exams. Our training program is not designed only to get well prepared for the exam and earn the certificate successfully, but we have skilled and professional individuals who will help you to get a professionally designed CV to catch your dream job. Our job placement program is another reason for you to choose us, as we are working closely in collaboration with IT companies across the UK.