List Headline Image
Updated by John Gruber on Feb 23, 2023
Headline for Free MS-500: Microsoft 365 Security Administration Training
 REPORT
John Gruber John Gruber
Owner
45 items   1 followers   0 votes   4.68k views

Free MS-500: Microsoft 365 Security Administration Training

Welcome to the MS-500 course on GitBit! In this course, you'll learn everything you need to know to pass the MS-500: Microsoft 365 Security Administration. You'll also learn everything you need to know to secure your Office 365 tenant. Throughout this course, we'll be doing a ton of lectures and a ton of hands-on. For a hands-on experience, we'll be using a free Microsoft 365 tenant.

Source: https://www.gitbit.org/course/ms-500/learn/Whats-in-this-course-cpchjBLkC

What's in this course? - GitBit

What's in the MS-500

Here's a quick break-down from Microsoft on what's covered in the MS-500:

  • Implement and manage identity and access (35-40%)
  • Implement and manage threat protection (25-30%)
  • Implement and manage information protection (10-15%)
  • Manage governance and compliance features in Microsoft 365 (20-25%)
2

Implement and manage identity and access (35-40%)

  • Secure Microsoft 365 hybrid environments
  • Secure Identities
  • Implement authentication methods
  • Implement conditional access
  • Implement roles and role groups
  • Configure and manage identity governance
  • Implement Azure AD Identity Protection
3

Implement and manage threat protection (25-30%)

  • Implement and manage Microsoft Defender for Identity
  • Implement device threat protection
  • Implement and manage device and application protection
  • Implement and manage Microsoft Defender for Office 365
  • Monitor Microsoft 365 Security with Azure Sentinel
  • Implement and manage Microsoft Cloud App Security
4

Implement and manage information protection (10-15%)

  • Manage sensitive information
  • Manage Data Loss Prevention (DLP)
  • Manage data governance and retention
5

Manage governance and compliance features in Microsoft 365 (20-25%)

  • Configure and analyze security reporting
  • Manage and analyze audit logs and reports
  • Discover and respond to compliance queries in Microsoft 365
  • Manage regulatory compliance
  • Manage insider risk solutions in Microsoft 365
Managing the Microsoft 365 tenant - Introduction to the ad... - GitBit

Everything you need to know about the portal office admin centers

Time limited admin roles in Microsoft 365 - GitBit

Just-in-time access of administrative roles can be effectively controlled by implementing Azure Active Directory (AAD) Privileged Identity Management (PIM)....

What's AD Connect - GitBit

Sync your on-premise Active Directory users to Microsoft 365. Quickly create users in Microsoft 365 and continue to sync your users from on-premise AD to Mi...
New to Microsoft 365? Get a quick run-down of AD Connect!
Trouble managing on-premises users and Microsoft 365 users? Sync them with AD Connect.

Protecting Passwords in Microsoft 365 - GitBit

Everything you need to know about protecting passwords to pass the MS-500

Password management in Microsoft 365: protection and ease of use. Simple to configure and simple to manage.

Securing and implementing enterprise applications - GitBit

Did you know your users may unintentionally give access to your Microsoft 365 tenant to a malicious person? Learn how to secure your Microsoft 365 tenant.

What's a conditional access policy? - GitBit

Conditional access policies help organizations improve security and compliance. They are used to fine-tune and customize the authentication of your users in Microsoft 365. Let me explain.

The many ways to implement multi-factor authentication (MFA) in Microsoft 365

There are 5 different ways to enable MFA in Microsoft 365. Learn which way is the best way in this guide.

Implement Self-service password reset in Microsoft 365 - GitBit

Self-service password reset in Microsoft 365 is a great way to empower users and decrease call volume to your IT help desk.

Tired of resetting users' passwords for them? Allow your users to reset their AD passwords through Microsoft 365 without admin intervention. Setup Self-service password reset!

Locking down your Microsoft 365 tenant from Microsoft engi... - GitBit

How to lock down your Microsoft 365 tenant from Microsoft engineers
Customer Lockbox is a tool built into the Microsoft 365 tenant that locks out Microsoft engineers from accessing your tenant

Implementing intelligent security using risk policies in M... - GitBit

Implement artificially intelligent security using risk policies in Microsoft 365

Help prevent malicious data access. Use built-in controls to identify and manage risks inside your Microsoft 365 environment.

Automating Access Review in Microsoft 365 - GitBit

Tired of managing group membership? Setup access review in Microsoft 365 today!

With Microsoft 365 access to your data is in motion unlike it has been before. Users can access your organization's data from personal devices and can even ...

Just in time, approval and notification for admin roles in Microsoft 365

Everything you need to know about Just in time (JIT) admin roles in Microsoft 365
Just in time privileged access. Microsoft calls this Privileged Identity Management (PIM). With PIM users only have admin roles for a limited time. And befo...

What's Microsoft Defender for identity? - GitBit

Have Active Directory? Secure it now with Microsoft Defender for Identity
Microsoft Defender for Identity is designed to protect your on-premises Active Directory (AD) and Active Directory Federation Services (ADFS). Microsoft Defender for Identity can perform the following:

  • Monitor user and entity behavior/activities with intelligent analytics.
  • Protect user identities and reduces the attack surface.
What's Microsoft Defender for Office 365? - GitBit

The meat and potatoes of Microsoft 365 security. The Microsoft Defender for Office 365 secures your entire Microsoft 365 environment.
Need to protect your Microsoft 365 tenant? Get started with Microsoft Defender for Office 365 today! Learn all the best practices and prepare for the MS-500!

Protect your email and Office environment from malicious a... - GitBit

New to securing email in Microsoft 365? Learn the basics of securing your Microsoft 365 email.

Protecting email against phishing attacks - GitBit

Has your organization been targeted by phishing attacks? Learn to protect yourself and your organization!
Blocking phishing attacks is a multi-part defense. Let's dig right into the settings and options to set up a defense.

Simulating attacks with Microsoft 365 - GitBit

Phishing attacks are one of the most common ways an organization is attacked. According to the FBI, there were 241,342 complaints.

Unless you're teaching them, your users will fall for phishing attacks. Learn how to simulate phishing attacks with Microsoft 365 today.

Protecting Windows 10 and other devices with Microsoft Defender for Endpoint

Microsoft Defender for Endpoint, more than just anti-virus. A tool that detects misconfigurations and details missing security updates across virtually all your apps.
What is Microsoft Defender for Endpoint and how do I use it?

Implement and manage Microsoft Defender for Cloud Apps - GitBit

The Microsoft Defender for Cloud Apps portal is a place where you can integrate Microsoft 365 and other third-party cloud apps to see what your users are us...

No matter how secure your organization is, users can copy corporate data to personal cloud apps. Are you protected? Set up Microsoft Defender for Cloud Apps to learn how to protect yourself and your organization.

Auditing sign-ins and other actions in Microsoft 365 - GitBit

Organizations have to cover a lot of ground when it comes to securing their Microsoft 365 environment. With today's cyber threats becoming more sophisticated, we need to be able to monitor and audit user activity. This is Microsoft 365 sign-in and audit logs come in.