Essentials of Azure
RCCE students will learn Microsoft Azure security including Azure Active Directory, Network Security Groups, Azure Sentinel, Microsoft Defender for Cloud, Key Vault, Azure Policy, and managed identity security. RCCE students will learn to secure Azure environments using native security services, configure Azure AD conditional access and privileged identity management, design secure virtual network architectures, deploy and operate Azure Sentinel for security monitoring, implement Azure Policy for compliance enforcement, manage secrets and certificates with Key Vault, detect and remediate misconfigurations using Microsoft Defender for Cloud, and respond to security incidents in Azure environments. This essentials course covers the core knowledge needed to operate competently in this domain. Building on core knowledge, RCCE students will learn the fundamental concepts, terminology, risks, and defenses that form the foundation for all further study and professional practice. Students build a solid knowledge base that prepares them for more advanced courses and real-world security responsibilities.
- Cloud Security Architects and Engineers
- DevSecOps and Platform Engineers
- Identity and Access Management Specialists
- Security Analysts securing cloud workloads
- Professionals implementing Essentials of Azure
- Explain Cloud Security Foundations for the Modern Enterprise fundamentals
- Explain Course Overview fundamentals
- Execute hands-on tasks for azure security fundamentals — covering Shared responsibility model, Azure AD / Entra ID architecture.
- Integrate privilege controls with identity providers and SIEM telemetry, including Azure AD / Entra ID architecture.
- Execute hands-on tasks for network security — covering NSGs and ASGs, Azure Firewall and WAF, Private endpoints and VNets.
- Execute hands-on tasks for nsgs and asgs — covering Azure Firewall and WAF, Private endpoints and VNets, DDoS Protection tiers.
- Execute hands-on tasks for azure firewall and waf — covering Private endpoints and VNets, DDoS Protection tiers.
- Execute hands-on tasks for private endpoints and vnets — covering DDoS Protection tiers.
- Monitor and audit privilege usage; detect escalation attempts, including Azure Sentinel SIEM/SOAR, Defender for Cloud posture, and Log Analytics workspaces.
- Integrate privilege controls with identity providers and SIEM telemetry, including Defender for Cloud posture, Log Analytics workspaces, and Incident response workflows.
- Execute hands-on tasks for defender for cloud posture — covering Log Analytics workspaces, Incident response workflows.
- Execute hands-on tasks for log analytics workspaces — covering Incident response workflows.
| Module 01 | Cloud Security Foundations for the Modern Enterprise |
| Module 02 | Course Overview |
| Module 03 | Azure Security Fundamentals |
| Module 04 | Identity and Access |
| Module 05 | Network Security |
| Module 06 | NSGs and ASGs |
| Module 07 | Azure Firewall and WAF |
| Module 08 | Private endpoints and VNets |
| Module 09 | Monitoring and Response |
| Module 10 | Azure Sentinel SIEM/SOAR |
| Module 11 | Defender for Cloud posture |
| Module 12 | Log Analytics workspaces |
| Module 13 | Learning Objectives |
| Module 14 | Secure Azure Environments |
All hands-on labs run on Rocheston Rose X OS. Students practice essentials of azure by implementing the controls discussed in class, with a focus on real-world deployment, monitoring, and validation.
- Lab 1: Explain Cloud Security Foundations for the Modern Enterprise fundamentals
- Lab 2: Explain Course Overview fundamentals
- Lab 3: Execute hands-on tasks for azure security fundamentals
- Lab 4: Integrate privilege controls with identity providers and SIEM telemetry
- Lab 5: Execute hands-on tasks for network security
Upon successful completion of this course, students will receive an official RCCE Course Completion Certificate for Essentials of Azure, verifiable through the Rocheston certification portal.
- Full access to all course materials and slide decks
- Hands-on lab access on Rocheston Rose X OS environment
- Access to Rocheston CyberNotes
- Access to Rocheston Zelfire — EDR/XDR SIEM platform
- Access to Rocheston Raven — online cyber range exercise platform
- Access to Rocheston Vulnerability Vines AI