SC-200: Microsoft Security Operations Analyst


🎯 Course description


Learn how to investigate, respond to, and hunt for threats using Microsoft Sentinel, Microsoft Defender for Cloud, and Microsoft 365 Defender. In this course you will learn how to mitigate cyberthreats using these technologies. Specifically, you will configure and use Microsoft Sentinel as well as utilize Kusto Query Language (KQL) to perform detection, analysis, and reporting. The course was designed for people who work in a Security Operations job role and helps learners prepare for the exam SC-200: Microsoft Security Operations Analyst.


🎯 This course is intended for:


This course is designed for cyber security professionals who wish to increase their knowledge and expertise in identifying, understanding, and responding to a variety of security threats.


🎯 We recommend that attendees of this course have:


We recommend that attendees of this course have:
• Basic understanding of Microsoft 365
• Fundamental understanding of Microsoft security, compliance, and identity products
• Intermediate understanding of Microsoft Windows
• Familiarity with Azure services, specifically Azure SQL Database and Azure Storage
• Familiarity with Azure virtual machines and virtual networking
• Basic understanding of scripting concepts


📌 Course outline


On the following link you can find all the modules described in detail, as well as the labs that will be used for each of the lessons.


📌 Course objectives


This course will enable attendees to understand foundational Microsoft security concepts such as cloud security architecture, security monitoring, and incident response, as well as to understand the importance of identity and authentication solutions such as multi-factor authentication and application access control. They will learn how to use Microsoft security solutions such as the Microsoft Security Graph to diagnose threats and assess attack surfaces, and how to tune security appliances and make system configurations to maximize protection. Learners will develop practical skills needed to identify exploitable vulnerabilities and threats, deploy mitigation solutions, and improve security posture, as well as develop best practices for logging and forensics techniques to accurately pinpoint the origin and impact of an incident. Finally, they will learn to create reports to document the results of security investigations with actionable analytics.


📌 Course info


Date: May 2023; For or more information contact us via e-mail
Course length:
32 hours
Level: Intermediate
Location: vILT (Virtual Instructor-Led Training) via Teams; After hours, split into multiple sessions, starting at 5PM;
Course Language: English/Serbian
Course type: Certification is not included in price, all information upon request
Applications: online or by e-mail:
Price: 680 € + VAT

REGISTER: online or by e-mail:


Registration and payment information:

  • For this course you can pay via Bank Transfer.
  • If you are paying as individual, via Bank Transfer (Wire Transfer),  see our Terms and Conditions.
  • If you are paying as a company (legal entity), after registration via e-mail, you will receive an invoice. All payments should be made to our bank account stated in received invoice. All payments are at the selling exchange rate of the bank effective on the date when the invoice was issued. 


How can we help you?

You might have some doubts about training, certification or something else feel free to contact us at

Also, you can try to find answers in FAQ section if you like 😊




This course is available as a public one in May 2023. Check the date once again and book your seat on time!
Contact us for a precise date on and book your seat on time!