Overview What You Will Learn Curriculum Instructor

Course Overview

Threat detection is a critical component of any robust cybersecurity strategy, especially in today's evolving digital threat landscape. Microsoft’s suite of security tools offers comprehensive solutions to identify, monitor, and respond to threats across on-premises, hybrid, and cloud environments. Learning how to effectively use these tools enables professionals to proactively defend enterprise systems, reduce vulnerabilities, and ensure a faster response to cyber incidents. This course empowers learners to understand and deploy Microsoft-based threat detection technologies as part of a defense-in-depth strategy.

This course begins with setting up a secure lab environment, followed by an exploration of the cyber threat landscape and defense techniques. It covers key concepts such as integrating pre-breach and post-breach strategies, comparing detection methods, and mitigating threat persistence. Learners are introduced to Microsoft solutions for on-premises threat detection including Windows Event Forwarding, Advanced Threat Analytics, Defender for Endpoint, and AMSI. The course then transitions to hybrid cloud environments, highlighting tools like Microsoft Cloud App Security, Defender for Identity, EMS, and Azure auditing features. Finally, it demonstrates how Microsoft leverages layered machine learning, behavioral monitoring, and integrated security intelligence to detect and respond to persistent threats.

This chapter-based course equips learners with practical knowledge of Microsoft threat detection tools, enabling effective threat monitoring and improved security posture in enterprise environments.

What You Will Learn

  • Describe signature-based and behavioral / heuristic detection methods
  • List the capabilities of on-premise threat detection and mitigation tools
  • Name the capabilities of hybrid and cloud threat detection and mitigation tools
  • Recognize the importance of Enterprise threat detection monitoring

Program Curriculum

  • Setup the Lab Environment
  • $7 Million Cybersecurity Scholarship by EC-Council

  • An Overview of the Modern Cyber Threat Landscape
  • Integrating Pre-Breach and Post-Breach Approaches to Mitigate Cyber Threats
  • Comparing Signature-Based and Behavioral Heuristics Detection Methods
  • Combating Threat Persistence
  • Chapter 2 Quiz

  • Windows Event Forwarding and Intrusion Detection
  • Microsoft Advanced Threat Analytics
  • Microsoft Defender for Endpoint (Microsoft Defender Advanced Threat Protection)
  • Microsoft Enterprise Threat Detection
  • Microsoft Security Risk Detection
  • Antimalware Scan Interface (AMSI)
  • Logging and Auditing
  • Threat Detection Tools
  • Chapter 3 Quiz

  • Microsoft Cloud App Security and O365 Cloud App Security
  • Microsoft Defender for Office 365 (Formerly Office 365 Advanced Threat Protection)
  • Office 365 Threat Intelligence
  • Microsoft Defender for Identity (Formerly Azure Advanced Threat Detection)
  • Azure Logging and Auditing
  • Microsoft Enterprise Mobility + Security (EMS)
  • Microsoft 365
  • Chapter 4 Quiz

  • Layered Machine Learning Defenses in Windows Defender Antivirus
  • Detecting Persistent Threats using Microsoft Defender ATP
  • Enterprise Threat Detection Behavioral Monitoring
  • Microsoft Comprehensive Approach to Cyber Threat Detection
  • Chapter 5 Quiz
Load more modules

Instructor

Cristian Calinescu

Cristian Calinescu is a Microsoft certified Senior Infrastructure Engineer and Infrastructure Security Operations Manager. His areas of expertise are Microsoft Windows Server 2008 R2, 2012 R2, 2016, 2019, Microsoft Active Directory, Azure Active Directory, Microsoft Exchange (2003 - 2019), Virtualization (Hyper-V, VMWare), Linux OS, PowerShell (including scripting). Cristian has been involved in various maintenance and/or implementation projects based on the technologies mentioned above. He has also participated in network design and implementations projects as well as assisting customers migrating to the latest technologies.

Join over 1 Million professionals from the most renowned Companies in the world!

certificate

Empower Your Learning with Our Flexible Plans

Invest in your future with our flexible subscription plans. Whether you're just starting out or looking to enhance your expertise, there's a plan tailored to meet your needs. Gain access to in-demand skills and courses for your continuous learning needs.

Monthly Plans
Annual Plans
Save 20% with our annual plans!

Pro

Ideal for continuous learning, offering video-based learning with 840+ courses and diverse Learning Paths to enhance your skills.

$ 69.00
Billed monthly or $599.00 billed annually
Get Started Now
Start your 7-day trial for $1

What is included

  • 840+ Premium Short Courses
  • 70+ Structured Learning Paths
  • Validation of Completion with all courses and learning paths
  • New Courses added every month
Early Access Offer

Pro +

Experience immersive learning with Practice Labs and CTF Challenges for comprehensive skill-building.

$ 79.00
Billed monthly or $699.00 billed annually
Get Started Now
Start your 7-day trial for $1

Everything in Pro and

  • 1400+ Practice Lab exercises with guided instructions
  • 150+ CTF Challenges with detailed walkthroughs
  • New Practice Labs and Challenges added every month

Related Courses

  • Hacking WEP/WPA/WPA2 Wi-Fi Networks Using Kali Linux 2.

    Hacking WEP/WPA/WPA2 Wi-Fi Networks Using Kali Linux 2

    Short Course

    Hacking WEP/WPA/WPA2 Wi-Fi Networks Using Kali Linux 2

    Vulnerability Assessment and Pentesting

    The comprehensive course to secure & crack WEP/WPA/WPA2 k...

    $69.99

    Intermediate

    5 hr 12 m

  • Bootstrap 4 Quick Website Bootstrap Components Course.

    Bootstrap 4 Quick Website Bootstrap Components Course

    Short Course

    Bootstrap 4 Quick Website Bootstrap Components Course

    Software Development

    Explore the basics of Bootstrap and learn to create a website...

    $49.99

    Beginner

    1 hr 30 m

  • CCNA - Understanding Routers and Switches.

    CCNA - Understanding Routers and Switches

    Short Course

    CCNA - Understanding Routers and Switches

    Security Architecture and Operations

    A comprehensive guide to understanding the in-depth functioni...

    $49.99

    Intermediate

    2 hr 0 m

  • The Complete Full-Stack JavaScript Course.

    The Complete Full-Stack JavaScript Course

    Short Course

    The Complete Full-Stack JavaScript Course

    Software Development

    Learn full-stack web development using JavaScript (ReactJS, N...

    $79.99

    Beginner

    24 hr 17 m

  • React.JS for Ecommerce: Building a Store with React.JS

    React.JS for Ecommerce: Building a Store with React.JS

    Short Course

    React.JS for Ecommerce: Building a Store with React.JS

    DevSecOps

    From React.js Fundamentals to Crafting an Online Storefront

    $49.99

    Advanced

    3 hr 30 m

  • CISSP Certification Domains 5, 6, 7, and 8 Video Training.

    CISSP Certification Domains 5, 6, 7, and 8 Video Training

    Short Course

    CISSP Certification Domains 5, 6, 7, and 8 Video Training

    Cybersecurity

    This course is ideal for individuals who desire to pass the I...

    $69.99

    Intermediate

    6 hr 30 m

  • Helm 3 - Package Manager for Kubernetes.

    Helm 3 - Package Manager for Kubernetes

    Short Course

    Helm 3 - Package Manager for Kubernetes

    Software Development

    A must tool for every DevOps engineer

    $49.99

    Intermediate

    1 hr 27 m

  • Learn Ethical Hacking by Hacking Real Websites Legally.

    Learn Ethical Hacking by Hacking Real Websites Legally

    Short Course

    Learn Ethical Hacking by Hacking Real Websites Legally

    Vulnerability Assessment and Pentesting

    Fun way to learn ethical hacking by playing online hacking ga...

    $69.99

    Beginner

    4 hr 18 m

1 50
View all