What Is Programming? And How To Get Started
January 28, 2025
Article
This course is part of Microsoft Azure Security Engineer Associate (AZ-500) Professional Certificate
Instructor: Microsoft
1,549 already enrolled
Included with
(12 reviews)
Recommended experience
Intermediate level
Some experience of working with Azure technologies in an administrator-level role in both cloud and hybrid environments.
(12 reviews)
Recommended experience
Intermediate level
Some experience of working with Azure technologies in an administrator-level role in both cloud and hybrid environments.
Describe defense in depth.
Review core security concepts and approaches that form part of the defense in depth strategy.
Implement and configure an Azure Application Gateway to protect your perimeter.
Configure and deploy the Azure Web Application Firewall.
Add to your LinkedIn profile
13 assignments
Add this credential to your LinkedIn profile, resume, or CV
Share it on social media and in your performance review
Are you a security engineer who wants to learn how to lock down the infrastructure and network resources running in your Azure environment? Then, Implement Platform Protection is the right course for you!
Throughout this course, you will explore perimeter security, network security, and host and containers security, along with various security components, tools, solutions, deployment methods, strategies, and services for protecting your Azure environment. You’ll examine connecting networks via peering, implementing hub-and-spoke topology and distributed denial of service (DDoS ) protection, securing solutions with VPNs, traffic control with network virtual appliances (NVAs), and using Azure Web Application Firewall (WAF) to prevent attacks. Within the course, you’ll discover the ins and outs of defense in depth, endpoint protection host security, network client and server technology, privileged access, serverless compute, and virtual machines (VMs). You’ll learn how to configure, deploy, enable, and manage various security solutions, including Azure App Service, Azure Application Gateway, Azure Bastion, Azure Container Instances, Azure Container Registry, Azure Defender, Azure Disk Encryption, Azure ExpressRoute, Azure Firewall and Firewall Manager, Azure Front Door, Azure Functions, Azure Kubernetes Service, Azure Private Link, Azure Security Benchmarks, and Azure Update Management. This is the third course in a series of seven courses that will prepare you to succeed in the AZ-500: Microsoft Azure Security Technologies exam.
In this module, you will learn about some of the perimeter level security tools provided by Azure to help prevent attacks to your Azure solutions. You will explore the concepts of defense in depth and zero trust to secure Azure perimeter. You will learn about network security and firewalls and tools to strengthen network protection in Azure. Azure virtual network security and enabling and configuring a distributed denial of service (DDoS) protection implementation is also covered in this module. You will learn how to deploy Azure Firewall implementation and configure and deploy the Azure Firewall Manager. The module also covers how you can secure your solutions using VPNs, Network virtual appliances (NVAs), and the Azure network virtual appliances firewall architecture. Finally, you will learn how to configure VPN forced tunneling.
17 videos14 readings4 assignments1 discussion prompt
Network security is an integral part of a defense in depth strategy. In this module, you will learn how to deploy and configure network security groups, create application security groups, and enable service endpoints. You will learn how to configure service endpoint services, deploy private links, and integrate private endpoints with other services. You will gain an understanding of encrypting traffic with SSL by using Application Gateway and learn about the various components of an application gateway. The module also covers implementing an Azure application gateway, configuring back-end pools for encryption, and configuring Application Gateway listener for encryption. You will learn how to deploy a web application firewall. You will also learn how to configure and manage Azure front door to define, manage, and monitor the global routing for your web traffic by optimizing for best performance and instant global failover for high availability.
12 videos12 readings4 assignments
In this module, you will learn how to use Host security as part of your defense strategy. You will learn how to configure and manage Host security to keep application host machines secure and how to configure and deploy Endpoint Protection. You will learn how to deploy a privileged access strategy for devices and privileged workstations and secure access to your virtual machines. You will gain an appreciation of the practice of layered security. You will learn how to configure and manage security for Azure Container Instances (ACI). You will learn about the Azure Container Registry (ACR) and how to enable Azure Container Registry authentication. You will learn about security for serverless compute and Azure App service, and how Kubernetes deployments and Azure Kubernetes Service works. You will understand how to configure Azure Kubernetes Service networking and deploy Azure Kubernetes Service storage. You will also learn how to secure authentication to Azure Kubernetes Service (AKS) with Active Directory and manage access to AKS using Azure role-based access controls.
25 videos14 readings4 assignments
In this module, you will attempt a course-level ungraded project and graded assessment.
4 videos1 reading1 assignment1 peer review2 discussion prompts
Our goal at Microsoft is to empower every individual and organization on the planet to achieve more. In this next revolution of digital transformation, growth is being driven by technology. Our integrated cloud approach creates an unmatched platform for digital transformation. We address the real-world needs of customers by seamlessly integrating Microsoft 365, Dynamics 365, LinkedIn, GitHub, Microsoft Power Platform, and Azure to unlock business value for every organization—from large enterprises to family-run businesses. The backbone and foundation of this is Azure.
Course
Course
Course
Politecnico di Milano
Course
12 reviews
83.33%
8.33%
0%
8.33%
0%
Showing 3 of 12
Reviewed on Oct 10, 2024
Outstanding course; I personally learned a lot from this course about platform protection on Azure. Thanks Cousera!
Unlimited access to 10,000+ world-class courses, hands-on projects, and job-ready certificate programs - all included in your subscription
Earn a degree from world-class universities - 100% online
Upskill your employees to excel in the digital economy
Access to lectures and assignments depends on your type of enrollment. If you take a course in audit mode, you will be able to see most course materials for free. To access graded assignments and to earn a Certificate, you will need to purchase the Certificate experience, during or after your audit. If you don't see the audit option:
The course may not offer an audit option. You can try a Free Trial instead, or apply for Financial Aid.
The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.
When you enroll in the course, you get access to all of the courses in the Certificate, and you earn a certificate when you complete the work. Your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile. If you only want to read and view the course content, you can audit the course for free.
If you subscribed, you get a 7-day free trial during which you can cancel at no penalty. After that, we don’t give refunds, but you can cancel your subscription at any time. See our full refund policy.
These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work.
These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.
These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.
These cookies enable the website to provide enhanced functionality and personalization. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.