Microsoft Security Academy

Welcome to the Microsoft Security Academy.

Welcome to the Microsoft Security Academy! This academy is organized into five primary categories (Cloud Security, Identity & Access, Endpoint Security, SIEM & XDR, and Risk Management & Privacy), all of which include academies incorporating video sessions, demonstrations, learning paths, certifications, and other related materials. The resources are created by architects across the GPSUS security-aligned team who are experts in their field. The overall objective of the academies it to help you all scale in learning and grow in experience.

Organization

MSA Organizational Chart

Important Updates

We’ll update this section with our upcoming events or critical content! For other Microsoft Security content, explore the Microsoft Security Youtube or the Microsoft Security Community YouTube. For documentation, explore the Microsoft Security Technical Content Library.

Interested in Security Compliance and Identity training? Register for events at Enable Security Compliance and Identity!

Security Certifications

Below you will find information about security certifications critical for learning. Please use the navigation pane on the right to quickly jump between sections or specific certification that you are interested in.

Microsoft Cybersecurity Architect (SC-100)

Exam Overview

  • Design a Zero Trust strategy and architecture (30-35%)
  • Evaluate Governance Risk Compliance (GRC) technical strategies and security operations strategies (10-15%)
  • Design security for infrastructure (10-15%)
  • Design a strategy for data and applications (15-20%)
  • Recommend security best practices and priorities (20-25%)

Exam Resources

Microsoft Security Operations Analyst (SC-200)

Exam Overview

  • Mitigate threats using Microsoft 365 Defender (25-30%)
  • Mitigate threats using Microsoft Defender for Cloud (20-25%)
  • Mitigate threats using Microsoft Sentinel (50-55%)

Exam Resources

Microsoft Identity and Access Administrator (SC-300)

Exam Overview

  • Implement identities in Azure AD (20–25%)
  • Implement authentication and access management (25–30%)
  • Implement access management for applications (15–20%)
  • Plan and implement identity governance in Azure AD (20–25%)

Exam Resources

Microsoft Information Protection Administrator (SC-400)

Exam Overview

  • Implement information protection (35–40%)
  • Implement data loss prevention (30–35%)
  • Implement information governance (25–30%)

Exam Resources

Microsoft 365 Security Administration (MS-500)

Exam Overview

  • Implement and manage identity and access (25-30%)
  • Implement and manage threat protection (30-35%)
  • Implement and manage information protection (15-20%)
  • Manage compliance in Microsoft 365 (20-25%)

Exam Resources

Microsoft Security, Compliance, and Identity Fundamentals (SC-900)

Exam Overview

  • Describe the concepts of security, compliance, and identity (10-15%)
  • Describe the capabilities of Microsoft Azure Active Directory (Azure AD), part of Microsoft Entra (25-30%)
  • Describe the capabilities of Microsoft Security solutions (25-30%)
  • Describe the capabilities of Microsoft compliance solutions (25-30%)

Exam Resources

Feedback

Have a content session recommendation or general feedback? Here’s how to give it:

Contributions

We welcome contributors to this project. Please use the GitHub links near the upper right and consider submitting pull requests or filing issues as needed.