Q1 Recap: What’s new in Microsoft Security skilling
As we wrap up an exciting first quarter, we’re thrilled to share some of the latest updates, resources, and learning opportunities in the world of Microsoft Security. Whether you’re a developer, IT admin, or security professional, there is something here for everyone looking to level up their skills and stay ahead in our ever-evolving landscape. Microsoft Sentinel data lake is now live! Sentinel data lake is a centralized repository that allows you to store all your structured and unstructured data at any scale. This means better risk detection, faster investigations, and more powerful analytics for your security operations. To learn how to incorporate data lake into your security operations, visit our new collection of Sentinel data lake resources. Major updates to Microsoft learning paths and modules We’ve rolled out several new and updated modules to help you build expertise in the latest security technologies: Secure AI Interactions and Environments with Microsoft Purview Overview: Learn how to secure developer environments by discovering AI apps, assessing data access, and applying protection. Key skills: Detect generative AI usage, assign user risk levels, and enforce policies dynamically based on behavior and data sensitivity. Who should take it Developers and security pros working with AI in enterprise settings. Global Secure Access Overview: Global secure access provides secure, identity-based access to resources like SharePoint, Exchange, and OneDrive. Key skills: Learn how GSA verifies identity and device before granting access, and how to onboard and use GSA for secure resource access. Who should take it? IT admins and users transitioning to global secure access Plan, Implement, and Administer Conditional Access Overview: Optimize conditional access policies and leverage Microsoft Security Copilot for advanced simulations in Microsoft Entra. Key Skills: Set up and simulate conditional access scenarios, automate and enhance security operations. Who Should Take It: Security engineers and admins managing identity and access. Automate Identity Lifecycle Using Lifecycle Workflows in Microsoft Entra Overview: Configure and deploy lifecycle workflows for onboarding, role changes, and offboarding. Key skills: Customize workflows, monitor, and troubleshoot. Who should take It? Identity and access administrators. New Applied Skill: Microsoft Entra We’re excited to announce a new applied skill: Get started with identities and access using Microsoft Entra. This new Microsoft Applied Skill credential is designed for identity and access professionals who want to prove their hands-on abilities with Microsoft Entra. It’s not just about theory—this is your chance to demonstrate real-world skills that matter in today’s security landscape. What’s covered? You’ll be assessed on practical tasks like: Creating, configuring, and managing identities Assigning roles and licenses Managing groups and memberships Implementing password protection and self-service password reset (SSPR) Enabling and managing multifactor authentication (MFA) Managing application access and permissions Enhancing security with identity protection and governance features Why pursue this? Identity is at the core of Zero Trust. By earning this credential, you show you can confidently manage user access, protect sensitive data, and respond to evolving threats. The learning path is concise—typically under four hours—and includes hands-on labs and scenario-based exercises to ensure you’re ready for real-world challenges. Who should pursue it? Anyone responsible for identity and access management, from IT admins to security engineers, will benefit. It’s also a great way to prepare for more advanced certifications or to upskill quickly for new projects. How to get started? Complete the “Perform basic identity and access tasks” learning path, then take the assessment lab to earn your credential and showcase your expertise to your team and the broader community. New Microsoft Virtual Training Day: Strengthen Cloud Security with Microsoft Defender for Cloud This hands-on, instructor-led event is designed to help security professionals, cloud admins, and IT teams master the essentials of protecting cloud workloads with Microsoft Defender for Cloud. What’s included? Configuring Defender for Cloud: Enable enhanced security features for servers, set up virtual networks, and deploy monitoring agents. Centralized Monitoring: Create and configure Log Analytics workspaces to centralize compliance and security data. Just-in-Time VM Access: Implement just-in-time to reduce exposure to remote access attacks. Cloud security posture management: Explore dashboards for security posture, regulatory compliance, workload protections, and inventory. Hands-on Labs: Each module includes guided walkthroughs and labs, so you can practice what you learn in a real Azure environment. Governance and Automation: Assign governance rules, automate threat detection, and use Secure Score to track and improve your security posture. Who should attend? This virtual training day is perfect for Security Engineers, Cloud Administrators, Security Operations Teams, and anyone responsible for securing Azure resources and ensuring regulatory compliance. The content is accessible for those with a basic understanding of Azure services and security principles, but it’s also deep enough for seasoned professionals to gain new insights. What’s the experience like? Expect a mix of instructor presentations, live demos, and hands-on labs. You’ll get access to a sandbox environment to try out everything from enabling Defender for Cloud to running advanced security analytics. 🤖 New Security for AI Skilling Paper We’re also promoting our new paper on security for AI skilling, which explores best practices and strategies for securing AI environments. Please read this paper to prepare for the AI era. 🛡️ Security Hub Reminder And finally, don’t forget to visit the Security Hub for the latest resources, updates, and community discussions.Grow your security skillset with the latest resources on Microsoft Learn
Advance your expertise with our revamped Security hub Designed for learners at all levels, this centralized hub is your go-to resource for Security technical skilling content, making it easier to pursue your unique security objectives. Find expert guidance aligned to your security journey. Whether you need to build foundational security skills, gain specialized knowledge, or prove your capabilities with Microsoft Credentials, get the guidance you need. Explore the latest resources organized by security focus area. Learn to understand advances in Zero Trust, identity and access, security operations, IT security, and much more. Connect with like-minded communities, partners, and other thought leaders. Join the conversation and get inspired to level up your skills and knowledge. Find the latest technical skilling content with the Security hub on Microsoft Learn. Hone your information security skills with Certification SC-401 Designed specifically for data security and information protection professionals, our new Microsoft Certified: Information Security Administrator Certification validates the skills needed to plan and implement information security for sensitive data by using Microsoft Purview and related services. It also validates the skills needed to mitigate risks from internal and external threats by protecting data inside collaboration environments that are managed by Microsoft 365. Plus, it verifies subject matter expertise needed to participate in information security incident responses. You can earn this new Certification by passing Exam SC-401: Administering Information Security in Microsoft 365. We’re also retiring the Microsoft Certified: Information Protection and Compliance Administrator Associate Certification and its related Exam SC-400: Administering Information Protection and Compliance in Microsoft 365. The Certification, related exam, and renewal assessments will all be retired on May 31, 2025. Learn how to better secure AI in our Learn Live Series As organizations develop, use, and increasingly rely on AI applications, they must address new and amplified security risks. Are you prepared to secure your environment for AI adoption? How about identifying threats to your AI and safeguarding data? Watch Learn Live: Security for AI with Microsoft Purview and Defender for Cloud. In this month-long webinar series, IT pros and security practitioners can hone their security skillsets with a deeper understanding of AI-centric challenges, opportunities, and best practices using Microsoft Security solutions. Learn Live dates/topics include: On Demand – Manage AI Data Security Challenges with Microsoft Purview: Microsoft Purview helps you strengthen data security in AI environments, providing tools to handle challenges from AI technology. Learn to safeguard your data and adapt to evolving security challenges in AI technology. This session will help you: Understand sensitivity labels in Microsoft 365 Copilot Secure against generative AI data exposure with endpoint Data Loss Prevention Detect generative AI usage with Insider Risk Management Dynamically protect sensitive data with Adaptive Protection On Demand – Manage Compliance with Microsoft Purview with Microsoft 365 Copilot: Use Microsoft Purview for compliance management with Microsoft 365 Copilot. You'll learn how to handle compliance aspects of Copilot's AI functionalities through Microsoft Purview. This session will teach you how to: Audit Copilot interactions within Microsoft 365 using Microsoft Purview Investigate Copilot interactions using Microsoft Purview eDiscovery Manage Copilot data retention with Microsoft Purview Data Lifecycle Management Monitor and mitigate risks in Copilot interactions using Microsoft Purview Communication Compliance On Demand– Identify and Mitigate AI Data Security Risks: Microsoft Purview Data Security Posture Management (DSPM) for AI helps organizations monitor AI activity, enforce security policies, and prevent unauthorized data exposure. Learn how to configure DSPM for AI, track AI interactions, run data assessments, and apply security controls to reduce risks associated with AI usage. You will learn how to: Explain the purpose and benefits of DSPM for AI Set up and configure DSPM for AI to monitor AI interactions Identify and analyze AI security risks using reports and insights Run and review AI data assessments to detect oversharing risks Apply security policies, such as DLP and sensitivity labels, to protect AI-referenced data May 13 at 10am PST – Enable Advanced Protection for AI Workloads with Microsoft Defender for Cloud: As organizations use and develop AI applications, they need to address new and amplified security risks. Prepare your environment for secure AI adoption to safeguard your data and identify threats to your AI. This session will help you: Understand what Defender for Cloud AI threat protection for AI is and how it works Enable threat protection workloads for AI Gain application and end user context for AI alerts Discover the latest self-guided skilling content To better support evolving Data Security needs, you can find a new learning path and several new modules on Microsoft Learn. In fact, some of these can help you prepare for our new SC-401 Certification. New learning path: Implement and manage data privacy solutions for compliance New modules: Get Started with identity and access labs Protect sensitive data in a digital world Review and analyze data classification and protection Identify and mitigate AI data security risks Understand Microsoft Purview Insider Risk Management Prepare for Microsoft Purview Insider Risk Management Create and manage Insider Risk Management policies Understand Microsoft Priva Implement and manage Microsoft Purview Privacy Risk Management Implement and manage Microsoft Priva Subject Rights Requests Manage user consent across digital platforms Use Microsoft Priva Tracker Scanning for web tracking compliance Automate privacy assessments to ensure compliance Last day for AI Skills Fest Challenges Last but not least, two new AI Skills Fest Challenges are now available to put your security skills to the test! Compete against your friends and coworkers, boost your understanding with easy-to-read instruction, and increase your marketable skills and career options. The new challenges include: Protect data in the age of AI Learn how to navigate AI data risks in this Security challenge. Discover, protect, and govern your data estate using Microsoft Purview. Prevent and respond to cyberattacks at the speed of AI Learn how to safeguard your organization against modern risks with a streamlined SecOps platform supercharged by Microsoft AI and threat intelligence in this Challenge. Explore how Microsoft Security Copilot and Microsoft Defender XDR work together to increase productivity.
