Exam Ref SC-100 Microsoft Cybersecurity Architect
暫譯: 考試參考 SC-100 微軟網路安全架構師
Diogenes, Yuri, Young, Sarah, Simos, Mark
相關主題
商品描述
Prepare for Microsoft Exam SC-100 and demonstrate your real-world mastery of skills and knowledge needed to design and evolve cybersecurity strategy for all aspects of enterprise architecture. Designed for experienced IT professionals, this Exam Ref focuses on critical thinking and decision-making acumen needed for success at the Microsoft Certified: Cybersecurity Architect Expert level.
Focus on the expertise measured by these objectives:
- Design a Zero Trust strategy and architecture
- Evaluate Governance Risk Compliance (GRC) technical strategies and security operations strategies
- Design a strategy for data and applications
- Recommend security best practices and priorities
This Microsoft Exam Ref:
- Organizes its coverage by exam objectives
- Features strategic, what-if scenarios to challenge you
- Assumes you have advanced security engineering experience and knowledge and experience with hybrid and cloud implementations
About the Exam
Exam SC-100 focuses on the knowledge needed to build overall security strategy and architecture; design strategies for security operations, identity security, and regulatory compliance; evaluate security posture; recommend technical strategies to manage risk; design strategies to secure server endpoints, client endpoints, and SaaS, PaaS, and IaaS services; specify application security requirements; design data security strategy; recommend security best practices based on Microsoft Cybersecurity Reference Architecture and Azure Security Benchmarks; use the Cloud Adoption Framework to recommend secure methodologies; use Microsoft Security Best Practices to recommend ransomware strategies.
About Microsoft Certification
The Microsoft Certified: Cybersecurity Architect Expert certification credential demonstrates your ability to plan and implement cybersecurity strategy that meets business needs and protects the organization's mission and processes across its entire enterprise architecture. To fulfill your requirements, pass this exam and earn one of these four prerequisite certifications: Microsoft Certified: Azure Security Engineer Associate; Microsoft Certified: Identity and Access Administrator Associate; Microsoft365 Certified: Security Administrator Associate; Microsoft Certified: Security Operations Analyst Associate.
See full details at: microsoft.com/learn
商品描述(中文翻譯)
準備 Microsoft 考試 SC-100,並展示您在設計和發展企業架構各方面的網路安全策略所需的技能和知識的實際掌握。這本考試參考書專為經驗豐富的 IT 專業人員設計,重點在於成功通過 Microsoft 認證:網路安全架構專家級別所需的批判性思維和決策能力。
專注於這些目標所測量的專業知識:
- 設計零信任策略和架構
- 評估治理風險合規(GRC)技術策略和安全運營策略
- 設計數據和應用程序的策略
- 建議安全最佳實踐和優先事項
這本 Microsoft 考試參考書:
- 根據考試目標組織內容
- 提供戰略性、假設情境以挑戰您
- 假設您具備高級安全工程經驗以及混合和雲端實施的知識和經驗
關於考試
考試 SC-100 專注於建立整體安全策略和架構所需的知識;設計安全運營、身份安全和合規性策略;評估安全狀態;建議管理風險的技術策略;設計保護伺服器端點、客戶端端點以及 SaaS、PaaS 和 IaaS 服務的策略;指定應用程序安全要求;設計數據安全策略;根據 Microsoft 網路安全參考架構和 Azure 安全基準建議安全最佳實踐;使用雲採用框架建議安全的方法;使用 Microsoft 安全最佳實踐建議勒索病毒策略。
關於 Microsoft 認證
Microsoft 認證:網路安全架構專家認證證明您能夠規劃和實施符合業務需求的網路安全策略,並保護組織的使命和流程,涵蓋整個企業架構。要滿足要求,通過此考試並獲得以下四項先決認證之一:Microsoft 認證:Azure 安全工程師助理;Microsoft 認證:身份和訪問管理員助理;Microsoft 365 認證:安全管理員助理;Microsoft 認證:安全運營分析師助理。
詳細資訊請參見:microsoft.com/learn
作者簡介
Yuri Diogenes, MSC Master of science in cybersecurity intelligence and forensics investigation from UTICA College, currently working on his PhD in Cybersecurity Leadership from Capitol Technology University. Yuri has been working at Microsoft since 2006, and currently he is a Principal PM Manager for the CxE Microsoft Defender for Cloud Team. Yuri has published a total of 29 books, mostly around information security and Microsoft technologies. Yuri is also a Professor at EC-Council University where he teaches at the Bachelor in Cybersecurity Program. Yuri also has an MBA and many IT/Security industry certifications, such as CISSP, MITRE ATT&CK(R) Cyber Threat Intelligence Certified, ECND, ECEH, ECSA, ECHFI, CompTIA Security+, CySA+, Network+, CASP and CyberSec First Responder. You can follow Yuri on Twitter at @ yuridiogenes.
Mark Simos is Lead Cybersecurity Architect for Microsoft where he leads the development of cybersecurity reference architectures, best practices, reference strategies, prescriptive roadmaps, CISO workshops, and other guidance to help organizations meet cybersecurity and digital transformation goals. Mark is co-host of the Azure Security Podcast and actively contributes to open standards and other publications such as the Zero Trust Commandments, The Open Group Zero Trust Core Principles, NIST Guide for Cybersecurity Event Recovery (800-184), NIST Guide to Enterprise Patch Management (800-40), Microsoft Digital Defense Report, and Microsoft Security blogs. Mark also co-chairs the Zero Trust Architecture (ZTA) working group at The Open Group and has presented numerous conferences including Black Hat USA, RSA Conference, Gartner Security & Risk Management, Microsoft BlueHat, Microsoft Ignite, and Financial Executives International.
Sarah Young is a Senior Cloud Security Advocate at Microsoft and a CNCF Ambassador with over a decade of experience in security across Europe, the US and Asia. Sarah is an experienced public speaker and has presented on a range of IT security and technology topics at industry events and holds numerous industry qualifications including CISSP, CCSP, CISM and Azure Solutions Architect and has previously co-authored Microsoft Press technical books. She is also a co-host of the Azure Security Podcast. Sarah has also won the Security Champion award at the Australian Women in Security Awards. She is an active supporter of both local and international security and cloud native communities. You can follow Sarah on Twitter @_sarahyo, although expect many dog pictures alongside security content.
Gladys Rodriguez is Principal Cybersecurity Engineer with over 25 years in the Information Technology field. As part of the Mission Engineering team, Gladys has helped embed existing security capabilities within Microsoft developed products/services. She has also helped create new security functionality for customers to enable zero trust in their environment. Recently, Gladys has been involved in helping develop zero trust strategies for Operational Technology used in Critical Infrastructure with special focus in aerospace solutions. Gladys is co-host of the Azure Security Podcast for both English and Spanish version. She has also contributed to publications such as the Microsoft Zero Trust publications, NIST SP 800-207, Zero Trust Architecture, Microsoft Exam SC-100: Microsoft Cybersecurity Architect and others. Gladys also spends a lot of time mentoring and sharing her knowledge with others to help them get more involved in the cybersecurity space.
作者簡介(中文翻譯)
尤里·迪奧根斯(Yuri Diogenes),擁有UTICA College的網路安全情報與取證調查碩士學位,目前正在Capitol Technology University攻讀網路安全領導博士學位。尤里自2006年以來一直在微軟工作,目前擔任CxE Microsoft Defender for Cloud團隊的首席產品經理。尤里已出版29本書籍,主要圍繞資訊安全和微軟技術。尤里同時也是EC-Council University的教授,教授網路安全學士課程。尤里還擁有MBA學位及多項IT/安全行業認證,如CISSP、MITRE ATT&CK(R)網路威脅情報認證、ECND、ECEH、ECSA、ECHFI、CompTIA Security+、CySA+、Network+、CASP和CyberSec First Responder。您可以在Twitter上關注尤里,帳號為@yuridiogenes。
馬克·西莫斯(Mark Simos)是微軟的首席網路安全架構師,負責領導網路安全參考架構、最佳實踐、參考策略、指導性路線圖、CISO研討會及其他指導方針的開發,以幫助組織實現網路安全和數位轉型目標。馬克是Azure Security Podcast的共同主持人,並積極參與開放標準及其他出版物的撰寫,如《零信任誡命》、《The Open Group零信任核心原則》、《NIST網路安全事件恢復指南(800-184)》、《NIST企業補丁管理指南(800-40)》、《微軟數位防禦報告》和微軟安全部落格。馬克還共同主持The Open Group的零信任架構(ZTA)工作組,並在多個會議上發表演講,包括Black Hat USA、RSA Conference、Gartner Security & Risk Management、Microsoft BlueHat、Microsoft Ignite和Financial Executives International。
莎拉·楊(Sarah Young)是微軟的高級雲安全倡導者,也是CNCF大使,擁有超過十年的安全經驗,涵蓋歐洲、美國和亞洲。莎拉是一位經驗豐富的公共演講者,曾在行業活動中就多個IT安全和技術主題發表演講,並擁有多項行業資格,包括CISSP、CCSP、CISM和Azure解決方案架構師,並曾共同撰寫微軟出版社的技術書籍。她也是Azure Security Podcast的共同主持人。莎拉在澳大利亞女性安全獎中獲得了安全冠軍獎。她積極支持本地和國際的安全及雲原生社群。您可以在Twitter上關注莎拉,帳號為@_sarahyo,不過請準備好看到許多狗狗的照片與安全內容一起出現。
格拉迪斯·羅德里格斯(Gladys Rodriguez)是首席網路安全工程師,在資訊技術領域擁有超過25年的經驗。作為任務工程團隊的一部分,格拉迪斯幫助將現有的安全能力嵌入微軟開發的產品/服務中。她還幫助為客戶創建新的安全功能,以實現其環境中的零信任。最近,格拉迪斯參與了幫助開發用於關鍵基礎設施的操作技術的零信任策略,特別專注於航空解決方案。格拉迪斯是Azure Security Podcast的共同主持人,提供英語和西班牙語版本。她還參與了《微軟零信任出版物》、《NIST SP 800-207》、《零信任架構》、《微軟考試SC-100:微軟網路安全架構師》等出版物的撰寫。格拉迪斯還花了很多時間指導和分享她的知識,幫助他人更深入參與網路安全領域。
