Microsoft Cyber Security Analyst SC-900 Exam Details

Check the link below for official notes from Microsoft:

Exam details and objectives can be found here.

Who Are These Notes For?

  • Students preparing to pass Microsoft cyber security analyst SC-900 exam.
  • Learners who want to learn how to use Microsoft Azure AD for security and identity management.

Microsoft Cyber Security Analyst SC-900 Study Notes PDF

This is the Microsoft Cyber Security Analyst SC-900 Study Notes Version one that includes all exam objectives and the subjects surrounding them in a brief fashion so that you can study them quickly and efficiently.

When you buy this booklet, you will be entitled to receive content updates for 3 months on it with the same original price that you paid for.

Table of Contents

-About The Exam

-Topics Covered In The Exam

-Introduction to Computers and Operating

Systems and Security

  • Maintenance
  • Data warehousing and data lakes
  • Practice Test

-Introduction to Networking and Cloud


  • OSI Model and TCP/IP
  • DNS
  • Logging
  • Client-server working models
  • Dynamic Host Configuration Protocol
  • (DHCP)
  • Authorization and Authentication
  • Wi-Fi and Network Attacks
  • Firewalls
  • Virtualization and Cloud Computing
  • Artificial intelligence
  • Practice Test

-Cybersecurity Threat Vectors and Mitigation

  • Example Cyber Attacks
  • Social Engineering
  • Mitigation Strategies and Security Controls
  • IoT Security
  • Cybersecurity Regulatory Frameworks and
  • Standards
  • Practice Test

-Cybersecurity Identity and Access Solutions

using Azure AD

  • Identity Management in Azure AD
  • Practice Test

-Cybersecurity Solutions and Microsoft Defender

DDOS Protection in Azure

  • Creating a Virtual Machine in Azure
  • Azure Firewall Protection
  • Encryption in Azure
  • Azure Bastion
  • Azure Policy Definitions and Management
  • Groups
  • Microsoft Sentinel
  • Microsoft 365 Defender
  • Using Sentinel and Defender for log
  • analytics
  • Deploying Microsoft Defender for Identity
  • Protection
  • Summary: Azure AD Identity Protection
  • Practice Quiz

-Cybersecurity Tools and Technologies

  • Red Team vs Blue Team
  • Phases of Penetration Testing
  • Penetration Testing Tools
  • Understanding IDS
  • Incident Response
  • Azure Private Endpoints
  • Network Segmentation in Azure
  • Azure VPN
  • Vulnerability Management in Azure
  • Tools used in Cybersecurity
  • Practice Quiz

-Cybersecurity Management and Compliance

  • Disaster Recovery and Backup Strategies in
  • Azure
  • Azure Log Analysis
  • Retention and Archiving in Azure
  • Azure’s Cloud Adoption Framework
  • Business Continuity Planning
  • Microsoft Purview
  • ISO27001
  • ISO/IEC 27017
  • Azure Blueprints
  • Practice Quiz

-Advanced Cybersecurity Concepts

  • STRIDE threat categories and mitigation
  • Spoofing threat
  • Tampering threat
  • Repudiation threat
  • Information Disclosure threat:
  • Denial-of-service threat:
  • Elevation of Privilege threat:
  • Code Reviews
  • Vulnerability identification
  • Security best practices
  • Countermeasure implementation
  • Mentoring and training
  • Threat Modeling
  • PASTA Framework
  • Microsoft Threat Modeling Tool
  • Security Development Lifecycle (SDL)
  • Risk Assessment Steps
  • IoT Device Architecture
  • Security Monitoring Tools in Azure
  • Zero Trust Model
  • Identity as Service
  • Azure Hybrid identity authentication
  • methods
  • Azure Network Security Groups
  • Practice Quiz

SC-900 Mock exam

Page count: 489

Format: PDF

Testimonials (LinkedIn)

How to buy the booklet?

You can buy the booklet directly by clicking on the button below

Microsoft Cyber Security Analyst SC-900 Study Notes in PDF

After you buy the booklet, you will be able to download the PDF booklet along with the markup files if you want to import them to Obsidian software.

What about the notes updates?

if you have been watching my YouTube Channel, you definitely know that those who subscribe to the second tier of my channel membership they instantly get access to a vast catalog of cybersecurity, penetration testing, digital marketing, system administration and data analytics notes catalog for 10$ along with the ability to receive all notes updates as long as they are subscribed so what does that mean?

This means if you want to stay up to date with the changes and updates to the notes and get access to other categories, I encourage to join the channel membership second tier instead. However, if you are fine with downloading the current version of this section of the notes then you can buy this booklet instead for a one-time payment.

Will the prices of this booklet change in the future?

Once another version of this booklet is released, which it will, the price will slightly change as the booklet will include more contents, notes and illustrations.

Free Blue Team Training

Checkout the playlist below on my YouTube channel for free Blue Team Training