MS-500: Microsoft 365 Security Administration

Log in to Enroll

Summary

  • intermediate
  • azure
  • office
  • m365
  • azure-active-directory
  • office-365
  • Candidates for this exam implement, manage, and monitor security and compliance solutions for Microsoft 365 and hybrid environments. The Microsoft 365 Security Administrator proactively secures Microsoft 365 enterprise environments, responds to threats, performs investigations, and enforces data governance. The Microsoft 365 Security Administrator collaborates with the Microsoft 365 Enterprise Administrator, business stakeholders, and other workload administrators to plan and implement security strategies and ensures that the solutions comply with the policies and regulations of the organization.Candidates for this exam are familiar with Microsoft 365 workloads and have strong skills and experience with identity protection, information protection, threat protection, security management, and data governance. This role focuses on the Microsoft 365 environment and includes hybrid environments.

Learning paths

3 hr 44 min
Insider threats and risks from illegal, inappropriate, unauthorized, or unethical behavior and actions are a major issue for all companies and can easily go undetected until it is too late. From IP theft to data leaks to many other scenarios, protecting the data within an organization from inadvertent or malicious actions is paramount for any organization. Microsoft's solutions for minimizing threats help organizations achieve the right balance between keeping their data protected and their people productive.

Modules in this learning path

  • Manage insider risk in Microsoft 365
    7 Units
    59 min

    Insider risk management in Microsoft 365 helps organizations address internal risks, such as IP theft, fraud, and sabotage. Learn about insider risk management and how Microsoft technologies can help you detect, investigate, and take action on risky activities in your organization.

  • Prepare communication compliance in Microsoft 365
    7 Units
    1 hr 16 min

    Communication compliance in Microsoft 365 is a solution that helps organizations address code-of-conduct policy violations in company communications, while also assisting organizations in regulated industries meet specific supervisory compliance requirements. Communication Compliance leverages machine learning to intelligently detect violations across different communication channels such as Microsoft Teams, Exchange Online, or Yammer messages.

  • Manage Customer Lockbox
    3 Units
    25 min

    Customer Lockbox supports requests to access data in Exchange Online, SharePoint Online, and OneDrive when Microsoft engineers need to access customer content to determine root cause and fix an issue. Customer Lockbox requires the engineer to request access from the customer as a final step in the approval workflow. This gives organizations the option to approve or deny these requests and provide direct-access control to the customer.

  • Plan information barriers
    4 Units
    25 min

    Information barriers enable administrators to define policies to allow or prevent communications between groups of users in Microsoft Teams chats and channels. When information barrier policies are in place, people who should not communicate with other specific users won’t be able to find, select, chat, or call those users. With information barriers, checks are in place to prevent unauthorized communication.

  • Implement privileged access management
    3 Units
    39 min

    Privileged access management allows granular access control over privileged admin tasks in Office 365. Privileged access management requires users to request just-in-time access to complete elevated and privileged tasks through a highly scoped and time-bound approval workflow. This configuration gives users just-enough-access to perform the task at hand without risking exposure of sensitive data or critical configuration settings.

1 hr 0 min
Protecting and securing your organization's information is more challenging than ever. The Protect enterprise information with Microsoft 365 learning path discusses how to protect your sensitive information from accidental oversharing or misuse, how to discover and classify data, how to protect it with sensitivity labels, and how to both monitor and analyze your sensitive information to protect against its loss.

Modules in this learning path

  • Information protection overview
    3 Units
    9 min

    Learn about information protection and how Microsoft technologies can help protect your sensitive data.

  • Information protection and the growing digital estate
    5 Units
    14 min

    Learn how Microsoft Information Protection helps your organization meet standards and requirements through supporting classification methods for end users.

  • Protect your data with sensitivity labels
    5 Units
    15 min

    Learn how to use information protection sensitivity labels to classify and protect your organizational data.

  • Prevent data loss
    4 Units
    12 min

    Learn how information protection helps organizations protect data to prevent data loss or theft.

  • Monitor and analyze sensitive data
    3 Units
    10 min

    Learn how to use information protection analytics and reporting to maximize data governance and protection.

58 min
Microsoft threat protection in Microsoft 365 addresses today's security challenges by securing your organization's assets and proactively identifying and protecting against persistent threats to your network endpoints.

Modules in this learning path

  • Introduction to threat protection with Microsoft 365
    4 Units
    11 min

    Learn about how attackers most commonly breach organizations–and the Microsoft tools that protect your organization in an ever shifting landscape.

  • Protect against threats with Microsoft Defender Advanced Threat Protection
    4 Units
    26 min

    Learn how new threat protection tools from Microsoft protect your organization’s users, devices, and data from attempted attacks.

  • Remediate risks with Office 365 Advanced Threat Protection
    5 Units
    49 min

    Learn about the Office 365 Advanced Threat Protection component of Microsoft Threat Protection.

  • Safeguard your environment with Azure Advanced Threat Protection
    5 Units
    1 hr 2 min

    Learn about the Azure Advanced Threat Protection component of Microsoft Threat Protection.

1 hr 0 min
Identity & access management is the foundation for a secure digital estate. The credentials that you issue to your users prove that they are who they claim to be and that they have permission to access your resources. Learn how to use Microsoft 365 to for authentication and authorization in your enterprise environment.

Modules in this learning path

  • Overview of identity and access management in Microsoft 365
    5 Units
    8 min

    Learn how identity and access management work in Microsoft 365.

  • Simplify access and identity provisioning with Microsoft 365
    6 Units
    17 min

    Learn how to use Microsoft 365 authentication tools for access and identity provisioning.

  • Strengthen authentication with Microsoft 365
    6 Units
    8 min

    Learn how to strengthen authentication across your enterprise deployment with security tools from Microsoft 365.

  • Protect those most targeted
    5 Units
    19 min

    Learn how to protect the most important credentials in your enterprise ecosystem – administrator credentials.

  • Use Microsoft 365 to promote a security mindset
    5 Units
    8 min

    Learn how to promote an enterprise-wide security mindset with Microsoft 365.

  • Embrace Zero Trust with Azure Active Directory
    5 Units
    35 min

    Learn about the Zero Trust model and how to implement Zero Trust into your organization.

44 min
We live in an always connected, technology-driven world. Efficient security management is the foundation to managing your assets – in the cloud, on-premises, or across a hybrid environment. You need to proactively manage and secure your organization’s identities, devices, end points (both apps and data), and IT infrastructure. Microsoft 365 helps you secure your infrastructure with a focus on visibility, control, and guidance, and helps you consolidate from a plethora of specialized functions and tools, leveraging the shared intelligence, to keep your security teams focused on the most critical insights for their workloads.

Modules in this learning path

  • Overview of security management in Microsoft 365 security center
    3 Units
    10 min

    Learn how the security management tools from Microsoft help you protect your organization’s users, devices, and data.

  • Use reporting in the Microsoft 365 security center
    3 Units
    12 min

    Learn how to take advantage of the reporting and insights available through the Microsoft 365 security center to drive organizational security health.

  • Protect mail with Office 365 Advanced Threat Protection
    3 Units
    10 min

    Learn how Office 365 Advanced Threat Protection (ATP) helps safeguard your organization against unknown malware, viruses, and harmful email links and attachments.

  • Secure Windows 10 endpoints
    4 Units
    12 min

    Learn how to mitigate end-point threats by using Windows 10 security features.