Microsoft Security Academy
Welcome to the Microsoft Security Academy, your gateway to comprehensive cybersecurity training and resources.
| Table of Contents | |
|---|---|
| Modules | |
| Other Pages | |
January 6th, 2025 Update📰
| Recent Update (January 6th): Modules, Events, Security Copilot Technical Resources, and Secure Future Initiative series |
We at Microsoft wish everyone a great start to the new year!🎉
Remember how the U.S. State Department caught Chinese hackers snooping around Microsoft’s email systems? They used the now infamous “Big Yellow Taxi” KQL detections, which you can find here🚕
In response to the Exchange breach and others like it, we’re continuing to improve our defenses. Read more about our recent progress here.
Our 2024 Digital Defense Report is live📢
Other News
We recently launched a Zero Trust partner kit which includes pre-packaged and co-branded resources for you to use with customers. Just add your own branding!
The Microsoft Incident Response team recently created a compilation of incident response/TTP guides, best practices, and threat-hunting strategies, known as the Microsoft Incident Response Ninja Hub.
We’re excited to announce Auxiliary Logs, a cost-effective solution for verbose logs. Azure Monitor now offers three plans: Analytics, Basic, and Auxiliary. (Auxiliary Logs = Basic Logs + Archive Tier)
We’re also excited to announce Summary Rules, which aggregate data at ingestion. You can even apply detection rule logic to Summary Rules!
Events🎯
| Topic | Date | Register | |
|---|---|---|---|
| Azure Network Security | Azure Firewall Private IP DNAT | JAN 15 | Register |
| Microsoft Defender for O365 | Improved SecOps Efficiency | JAN 23 | Register |
| Azure Network Security | Azure WAF Bot Protection | JAN 28 | Register |
| Microsoft Defender XDR | Get the most out of MDVM | FEB 12 | Register |
| Microsoft Sentinel | API Integration with Sentinel & Unified SecOps | FEB 20 | Register |
Start Your Journey
- Get started
- Basic cyber hygiene prevents 98% of attacks
- Microsoft’s Incident Response Guide
- Secure Cloud Business Applications (SCuBA) Project – CISA
Stay Connected🔗
Join our Security Connection Program where you can have influence in helping us shape our products together.
Stay connected with our Security Community, your peers, find guidance and resources, view technical and roadmap related questions, and more.
- Microsoft Sentinel Blog
- Microsoft Defender XDR Blog
- Microsoft Defender for Cloud Blog
- Microsoft Entra Blog
- Azure Network Security Blog
- Microsoft Defender for Endpoint Blog
- Microsoft Defender for IoT Blog
- Security, Compliance, and Identity Blog
Want to be a Ninja?
Microsoft Ninja trainings are sets of organized learning modules that guide you through the advanced features and functions of our products.
- Microsoft Security Copilot Ninja Training
- Microsoft Unified SOC Platform Ninja Training
- Microsoft Sentinel Ninja Training – Recently updated
- Microsoft Sentinel Automation Ninja Training
- Microsoft Defender Threat Intelligence Ninja Training
- Microsoft Sentinel Notebooks Ninja Training
- Microsoft Defender XDR Ninja Training
- Microsoft Defender for Office 365 Ninja Training
- Microsoft Defender for Identity Ninja Training
- Microsoft Defender for Cloud Apps Ninja Training
- Microsoft Defender for Cloud Ninja Training
- Microsoft Defender External Attack Surface Management Ninja Training
- Azure Network Security Ninja Training
- Microsoft Defender for Endpoint Ninja Training
- Microsoft Defender for IoT Ninja Training
- Microsoft Purview eDiscovery Ninja Training
- Microsoft Purview Information Protection Ninja Training
- Microsoft Purview Data Loss Prevention (DLP) Ninja Training
- Insider Risk Management Ninja Training
Microsoft Cybersecurity Reference Architecture (MCRA)🔒
