Overview
Exam AZ-500, “Azure Security Technologies,” is an associate-level certification for professionals who deal with Azure Cloud’s security and identity controls and want to prove their proficiency in the field.
The purpose of the test is to ensure that you have the knowledge necessary to manage and implement identity and access controls, threat prevention and security controls, and to safeguard data and applications in cloud and hybrid environments as part of end-to-end security enablement.
Exam Prerequisites
If you want to take the Azure Security Technologies exam, you should take one of the following exams first. They will give you enough experience with Azure services and products to pass the Azure Security Technologies exam:
- Azure Administrator Associate
- Azure Developer Associate
Who should take this AZ-500 test?
On a more general level, take the test:
- If you want to learn more about Security, Identity, and Encryption in Azure cloud services.
- If you work in administration or software development and want to move into the security field, this is your chance.
- If you want to get better at security and learn more about how to protect cloud workloads.
What Will the Test Be Like?
The Security Technologies Exam takes 210 minutes, which includes about 30 minutes for the surveys and tests. This leaves you with about 180 minutes to take the actual exam. You can expect the test to have between 40 and 60 questions.
The exam can be set up in different ways, such as:
- Case study with two-choice and drag-and-drop questions, among others.
- Questions with only one answer choice that can’t be skipped or looked over. You only get ONE chance to answer each question.
- Single-choice questions (Yes/No or True/False)
- Multiple-choice questions
- Arrange in the correct sequence questions.
Since it’s an exam for an associate level, it’s pretty hard because it covers a lot of different topics and best practices. Before you sign up for the exam, you should have at least a year of hands-on experience with Azure Cloud Administration and Security practices in general.
Here are some suggestions for the test and some tips that might be helpful.
- Use the AZ-104 and AZ-900 exams to learn about the services and Azure offerings and to test your basic knowledge.
- Schedule the test at least 60–90 days in advance. Try to use vouchers from a learning partner or keep an eye out for Microsoft’s open Cloud Skill Challenges.
- If this is your first time taking a Virtual Exam, make sure to read PearsonVUE’s exam information to make sure your desk and workspace are clean before you start the exam.
- It’s not clear when the test should be given. If you are a morning person, you might want to do it in the morning when your mind isn’t busy with other things. On the other hand, I’ve had trouble with wait times and schedules in the evening or afternoon PST time zones.
- You can use a whiteboard to talk about the exams and come up with ideas.
- Before the exam starts, change the brightness of your screen or turn on Dark Mode. If you always look at a bright white screen, it could make it hard for you to concentrate. Before you start, you might want to switch to dark mode from the bottom left.
- Use the Exam Outline to write down when you want to finish each module and section so you don’t get off track. For example, pick an end date and work backwards to figure out how much time to spend on each module and section.
-
Manage identity and access (30–35%)
-
Manage Azure Active Directory (Azure AD) identities
-
Manage secure access by using Azure AD
-
Manage application access
-
Integrate single sign-on (SSO) and identity providers for authentication
-
Create an app registration
-
Configure app registration permission scopes
-
Manage app registration permission consent
-
Manage API permissions to Azure subscriptions and resources
-
Configure an authentication method for a service principal
-
Integrate single sign-on (SSO) and identity providers for authentication
-
Manage access control
-
Implement platform protection (15–20%)
-
Implement advanced network security
-
Secure the connectivity of hybrid networks
-
Secure the connectivity of virtual networks
-
Create and configure Azure Firewall
-
Create and configure Azure Firewall Manager
-
Create and configure Azure Application Gateway
-
Create and configure Azure Front Door
-
Create and configure Web Application Firewall (WAF)
-
Configure a resource firewall, including storage account, Azure SQL, Azure Key Vault, or Azure App Service
-
Configure network isolation for Web Apps and Azure Functions
-
Implement Azure Service Endpoints
-
Implement Azure Private Endpoints, including integrating with other services
-
Implement Azure Private Links
-
Implement Azure DDoS Protection
-
Secure the connectivity of hybrid networks
-
Configure advanced security for compute
-
Configure Endpoint Protection for virtual machines (VMs)
-
Implement and manage security updates for VMs
-
Configure security for container services
-
Manage access to Azure Container Registry
-
Configure security for serverless compute
-
Configure security for an Azure App Service
-
Configure encryption at rest
-
Configure encryption in transit
-
Configure Endpoint Protection for virtual machines (VMs)
-
Manage security operations (25–30%)
-
Configure centralized policy management
-
Configure and manage threat protection
-
Configure and manage security monitoring solutions
-
Create and customize alert rules by using Azure Monitor
-
Configure diagnostic logging and log retention by using Azure Monitor
-
Monitor security logs by using Azure Monitor
-
Create and customize alert rules in Microsoft Sentinel
-
Configure connectors in Microsoft Sentinel
-
Evaluate alerts and incidents in Microsoft Sentinel
-
Create and customize alert rules by using Azure Monitor
-
Secure data and applications (25–30%)
-
Configure security for storage
-
Configure security for data
-
Configure and manage Azure Key Vault
-
-
No Video Found!
-
-
-
No Books Found!
-
Leave a Reply
You must be logged in to post a comment.
Click Here To Load Topic