This exam measures your ability to accomplish the following technical tasks: mitigate threats by using Microsoft 365 Defender; mitigate threats by using Defender for Cloud; and mitigate threats by using Microsoft Sentinel.
As a Microsoft security operations analyst, you reduce organizational risk by : Rapidly remediating active attacks in the environment, Advising on improvements to threat protection practices and Referring violations of organizational policies to appropriate stakeholders. You should be able to perform Triage, Incident response, Vulnerability management, Threat hunting and Cyber threat intelligence analysis.
As a Microsoft security operations analyst, you monitor, identify, investigate, and respond to threats in multicloud environments by using: Microsoft Sentinel, Microsoft Defender for Cloud, Microsoft 365 Defender, Third-party security solutions.
In this role, you collaborate with business stakeholders, architects, identity administrators, Azure administrators, and endpoint administrators to secure IT systems for the organization. As a candidate, you should be familiar with: Microsoft 365, Azure cloud services and Windows and Linux operating systems.
| Mitigate threats using Microsoft 365 Defender | 30% |
| Mitigate threats by using Defender for Cloud | 20% |
| Mitigate threats by using Microsoft Sentinel | 55% |