Training: Microsoft Cybersecurity Architect (SC-100)

Ref. SC-100T00

Download PDF

Duration:

jours

Exam:

Optionnel

Level:

Avancé

Funding:

Eligible

Home > Trainings > IT Pro > Audit and Cybersecurity > Microsoft Cybersecurity Architect (SC-100)

Microsoft Cybersecurity Architect Training (SC-100)

In a context where digital threats are constantly evolving, the role of cybersecurity architect has become strategic for organizations. The Microsoft Cybersecurity Architect training (SC-100) prepares you in four days to design comprehensive security strategies based on Zero Trust principles, risk governance, and Microsoft technologies. You will learn to design security architectures covering identity, network, data, and applications in cloud, hybrid, and multicloud environments.

Delivered by an MCT-certified trainer at ITTA in Geneva or Lausanne, this expert-level SC-100 training integrates case studies and architectural design exercises. You will master the Microsoft Cybersecurity Reference Architecture (MCRA) and Cloud Adoption Framework (CAF) frameworks while designing solutions with Microsoft Defender, Microsoft Sentinel, Microsoft Entra ID, and Microsoft Purview. This course effectively prepares you for the SC-100 Microsoft Cybersecurity Architect exam, the most advanced certification in the Microsoft security path.

Participant Profiles

Cloud security engineers
Security solutions architects
Cybersecurity consultants
IT security managers
Compliance and data governance experts

Objectives

Design a Zero Trust security strategy aligned with Microsoft frameworks (MCRA, CAF, WAF)
Design security architectures integrating Microsoft Defender, Sentinel, and Entra ID
Evaluate and recommend governance, compliance, and resilience strategies
Design security for identities, network, applications, and data
Specify security requirements for SaaS, PaaS, IaaS, and multicloud environments

Prerequisites

Master the fundamentals of cybersecurity and compliance
Understand Microsoft cloud and hybrid environments
Hold an associate-level certification (AZ-500, SC-200, or SC-300)

Course Content

Module 1: Introduction to Zero Trust and best practice frameworks

Describe antipatterns and best practices
Describe the concept of Zero Trust
Describe the frameworks
Describe the Zero Trust adoption framework
Describe how the frameworks relate to each other
Module assessment

Module 2: Design security solutions that align with the Cloud Adoption Framework (CAF) and Well-Architected Framework (WAF)

Understand the Cloud Adoption Framework
Understand the Cloud Adoption Framework secure methodology
Understand Azure landing zones
Design security with Azure landing zones
Understand the Well-Architected Framework
Understand the Well-Architected Framework security pillar
Evaluate a security strategy
Define a security strategy
Recommend solutions for security and governance
Design secure DevSecOps processes
Design a strategy for secure AI adoption
Module assessment

Module 3: Design solutions that align with the Microsoft Cybersecurity Reference Architecture (MCRA) and Microsoft cloud security benchmark (MCSB)

Describe the Microsoft Cybersecurity Reference Architecture
Describe the Microsoft Cloud Security Benchmark
Design solutions with best practices for capabilities and controls
Design solutions with best practices for protecting against insider, external and supply chain attacks.
Design AI solutions that align to the Microsoft Cloud Security Benchmark
Design solutions that align with the Zero Trust adoption framework
Module assessment

Module 4: Design a resiliency strategy for ransomware and other attacks based on Microsoft Security Best Practices

Common cyberthreats and attack patterns
Support business resiliency
Design solutions for mitigating ransomware attacks, including prioritization of BCDR and privileged access
Design solutions for business continuity and disaster recovery (BCDR), including secure backup and restore
Evaluate solutions for security updates
Module assessment

Module 5: Design solutions for regulatory compliance

Translate compliance requirements into security controls
AI compliance considerations
Design a solution to address compliance requirements by using Microsoft Purview
Address security and compliance requirements with Azure Policy
Evaluate and validate alignment with regulatory standards and benchmarks by using Microsoft Defender for Cloud
Module assessment

Module 6: Design solutions for identity and access management

Design a solution for access to SaaS, PaaS, IaaS, hybrid, and multicloud resources
Design a solution for Microsoft Entra ID, including hybrid and multicloud environments
Design a solution for external identities
Design modern authentication and authorization strategies
Design a solution for agent identities using Microsoft Entra Agent ID
Design Conditional Access policies for AI agents
Validate alignment of Conditional Access policies with a Zero Trust strategy
Specify requirements for securing Active Directory Domain Services
Design a solution to manage secrets, keys, and certificates

Module 7: Design solutions for securing privileged access

Secure privileged access
Design privileged role assignment using the Enterprise Access Model
Evaluate security and governance with Microsoft Entra ID solutions
Design a solution to secure tenant administration
Design a solution for cloud infrastructure entitlement management
Design a solution for privileged access workstations and remote access
Evaluate an access review management solution
Module assessment

Module 8: Design solutions for security operations

Describe the function of Security operations (SecOps)
Design monitoring to support hybrid and multicloud environments
Design solutions to support centralized logging and auditing
Design solutions for detection and response that includes extended detection and response (XDR) and security information and event management (SIEM)
Design a solution for security orchestration, automation, and response (SOAR)
Design and evaluate security workflows, including incident response, threat hunting, and incident management
Design and evaluate threat detection coverage by using MITRE ATT&CK matrices, including Cloud, Enterprise, Mobile, and ICS
Module assessment

Module 9: Interactive case study: Modernizing identity and data security

Interactive case study
Interactive case study highlights

Module 10: Interactive case study: Modernizing user access control and threat resilience

Interactive case study
Interactive case study highlights

Module 11: Evaluate solutions for securing Microsoft 365

Evaluate security posture for productivity and collaboration workloads by using metrics
Evaluate how Microsoft Defender for Office 365 and Microsoft Defender for Cloud Apps protect productivity workloads
Evaluate how Microsoft Intune protects and manages endpoints
Evaluate solutions for securing data in Microsoft 365 using Microsoft Purview
Evaluate how data security and compliance controls protect organizational data used by Microsoft 365 Copilot
Module assessment

Module 12: Design solutions for securing applications

Design and implement standards to secure application development
Design a full lifecycle strategy for application security
Evaluate security posture of existing application portfolios
Evaluate application threats with threat modeling
Secure access for workload identities
Design a solution for API management and security
Design a solution for secure access to applications
Map technologies to application security requirements
Module assessment

Module 13: Design solutions for securing an organization’s data

Data security design principles and frameworks
Evaluate solutions for data discovery and classification
Specify priorities for mitigating threats to data
Evaluate solutions for encryption of data at rest and in transit, including Azure KeyVault and infrastructure encryption
Design data security for Azure workloads
Design security for data used in AI workloads
Design security for Azure Storage
Design a security solution with Microsoft Defender for SQL and Microsoft Defender for Storage
Module assessment

Module 14: Interactive case study: Securing apps and data

Interactive case study
Interactive case study highlights

Module 15: Specify requirements for securing SaaS, PaaS, and IaaS services

Specify security baselines for SaaS, PaaS, and IaaS services
Specify security requirements for IoT workloads
Specify security requirements for web workloads
Specify security requirements for containers and container orchestration
Specify security requirements for AI workloads
Evaluate security for Microsoft Foundry workloads
Module assessment

Module 16: Design solutions for security posture management in hybrid and multicloud environments

Evaluate security posture by using Microsoft Defender for Cloud, including the Microsoft cloud security benchmark
Evaluate security posture by using Microsoft Secure Score
Design integrated posture management solutions that include Microsoft Defender for Cloud in hybrid and multicloud environments
Select cloud workload protection solutions in Microsoft Defender for Cloud
Design a solution for integrating hybrid and multicloud environments by using Azure Arc
Design a solution for Microsoft Defender External Attack Surface Management
Specify requirements and priorities for a posture management process that uses Microsoft Security Exposure Management attack paths
Module assessment

Module 17: Design solutions for securing server and client endpoints

Specify security requirements for servers
Specify security requirements for mobile devices and clients
Specify security requirements for IoT devices and embedded systems
Evaluate solutions for securing operational technology (OT) and industrial control systems (ICS) by using Microsoft Defender for IoT
Specify security baselines for server and client endpoints
Design a solution for secure remote access
Evaluate Windows Local Admin Password Solution (LAPS) solutions
Module assessment

Module 18: Design solutions for network security

Evaluate network designs to align with security requirements and best practices
Design solutions for network segmentation
Design solutions for traffic filtering with network security groups
Design solutions for network posture management
Design solutions for network monitoring
Evaluate solutions that use Microsoft Entra Internet Access
Evaluate solutions that use Microsoft Entra Private Access
Module assessment

Module 19: Interactive case study: Securing endpoints and infrastructure

Interactive case study
Interactive case study highlights

Documentation

Access to Microsoft Learn, Microsoft’s online learning platform, offering interactive resources and educational content to deepen your knowledge and develop your technical skills.

Lab / Exercises

This course provides you with exclusive access to the official Microsoft lab, enabling you to practice your skills in a professional environment.

Exam

This course prepares you to the SC-100: Microsoft Cybersecurity Architect exam.

Complementary Courses

Eligible Funding

ITTA is a partner of a continuing education fund dedicated to temporary workers. This fund can subsidize your training, provided that you are subject to the “Service Provision” collective labor agreement (CCT) and meet certain conditions, including having worked at least 88 hours in the past 12 months.

Additional Information

Become a Microsoft cybersecurity architect with the SC-100 certification

The SC-100 Microsoft Cybersecurity Architect exam validates the ability to design and evaluate cybersecurity strategies at an organizational level. With a search volume of 140 monthly searches in Switzerland and a keyword difficulty index (KDI) of only 13, the keyword sc-100 represents an opportunity for professionals who want to position themselves on the most advanced expertise in the Microsoft security ecosystem. This expert-level certification is the pinnacle of the SC path, following associate-level certifications such as SC-200 or SC-300.

At ITTA, a Microsoft Learning Partner based in Geneva and Lausanne, the Microsoft Cybersecurity Architect (SC-100) training is delivered over four days by an MCT certified trainer. as an option and the labs are performed on the official Microsoft cloud environment.

Zero Trust strategy and reference frameworks

The core of the SC-100 training is based on designing a comprehensive Zero Trust strategy. This security model assumes that no user, device, or network is trusted by default. Every access request is explicitly verified, privileges are limited to the strict minimum, and breaches are assumed to strengthen detection.

You will learn to align your strategy with Microsoft frameworks: the Cloud Adoption Framework (CAF) to structure cloud adoption, the Well-Architected Framework (WAF) to ensure resilience, and the Microsoft Cybersecurity Reference Architecture (MCRA) to integrate security technologies into a coherent vision. CIS benchmarks and the Microsoft Cloud Security Benchmark guide configuration hardening.

Security architecture with the Microsoft ecosystem

The training covers designing architectures integrating all the technological pillars of Microsoft security. Microsoft Entra ID provides identity and access management with Conditional Access, MFA, and Privileged Identity Management. Microsoft Defender XDR correlates security alerts from endpoints, identities, cloud applications, and emails. Microsoft Sentinel, the cloud-native SIEM, centralizes detection, investigation, and automated incident response. Microsoft Purview covers data classification, data loss prevention (DLP), and regulatory compliance.

You will design architectures for hybrid and multicloud environments using Azure Arc for non-Azure resource integration, and Microsoft Defender for Cloud for security posture management (CSPM) and workload protection (CWP). The training case studies allow you to put these concepts into practice on realistic scenarios.

Governance, compliance, and resilience

The cybersecurity architect must also ensure organizational regulatory compliance and resilience. The SC-100 training teaches you to design risk governance (GRC) strategies with Microsoft Purview and Azure Policy. You will define resilience strategies against ransomware, including BCDR (business continuity and disaster recovery) prioritization, secure backup, and security patching.

Application security, secrets management with Azure Key Vault, network segmentation, and endpoint protection with Microsoft Intune complete the program. Each domain is approached from an architectural design perspective, giving you the tools to assess, recommend, and document your security choices.

Cybersecurity architect profile and prerequisites

The SC-100 certification is aimed at experienced cybersecurity professionals: solutions architects, cloud security engineers, cybersecurity consultants, and IT security managers. Microsoft recommends having previously obtained an associate-level certification such as SC-200 (Security Operations Analyst), SC-300 (Identity and Access Administrator), or AZ-500 (Azure Security Engineer). In French-speaking Switzerland, cybersecurity architects are among the most sought-after profiles in the banking, pharmaceutical, and institutional sectors.

FAQ

What are the prerequisites for the SC-100 training?

Significant cybersecurity experience and an associate-level certification (SC-200, SC-300, or AZ-500) are recommended. The training is expert-level and assumes a solid understanding of Microsoft security services.

Is the SC-100, in the training?

The training prepares you for the official Microsoft certification exam, which can be taken after completing the course

What is the difference between SC-100 and AZ-500?

AZ-500 (Azure Security Engineer) is an associate-level certification focused on the technical implementation of Azure security. SC-100 is an expert-level certification oriented toward security design and strategy at an organizational level, covering the entire Microsoft ecosystem (Azure, Microsoft 365, Entra ID, Purview, Defender).

Is the training available as a virtual class?

Yes. You can take the training in-person in Geneva or Lausanne, or as a virtual class with the same MCT certified trainer, the same Microsoft cloud labs, and the same training materials.

Does the training include hands-on exercises?

Yes. The SC-100 training includes case studies and labs on the official Microsoft cloud environment. You will design complete security architectures based on realistic enterprise scenarios.

What is the recommended path after SC-100?

SC-100 being the most advanced certification in the Microsoft security path, it validates an expert level. SC-100 certified professionals evolve toward senior security architect, CISO, or strategic cybersecurity consultant roles.