Overview

Implement the Microsoft Defender for Endpoint environment to manage devices, perform investigations on endpoints, manage incidents in Defender XDR, and use Advanced Hunting with Kusto Query Language (KQL) to detect unique threats.

  • Level: Intermediate
  • Product: Microsoft DefenderMicrosoft Defender for EndpointMicrosoft Defender XDR
  • Role: Security Operations Analyst
  • Subject: Threat protection

Skills Covered

  • Mitigate incidents using Microsoft Defender
  • Deploy the Microsoft Defender for Endpoint environment
  • Configure for alerts and detections in Microsoft Defender for Endpoint
  • Configure and manage automation using Microsoft Defender for Endpoint
  • Perform device investigations in Microsoft Defender for Endpoint
  • Perform device investigations in Microsoft Defender for Endpoint

Who Should Attend

Course Curriculum

Prerequisites

  • Experience using the Microsoft Defender portal
  • Basic understanding of Microsoft Defender for Endpoint
  • Basic understanding of Microsoft Sentinel
  • Experience using Kusto Query Language (KQL) in Microsoft Sentinel

Download Syllabus

Course Modules

Expand allCollapse all

Request More Information

Training Options

Intake: 24 Mar 2025
Duration: 1 Day
Guaranteed: TBC
Modality: ILT
Price:

RM1,200.00Enroll Now

Exam:
Intake: 24 Mar 2025
Duration: 1 Day
Guaranteed: TBC
Modality: VILT
Price:

RM1,200.00Enroll Now

Exam:
Intake: 16 Jun 2025
Duration: 1 Day
Guaranteed: TBC
Modality: ILT
Price:

RM1,200.00Enroll Now

Exam:
Intake: 16 Jun 2025
Duration: 1 Day
Guaranteed: TBC
Modality: VILT
Price:

RM1,200.00Enroll Now

Exam:
Intake: 1 Sep 2025
Duration: 1 Day
Guaranteed: TBC
Modality: ILT
Price:

RM1,200.00Enroll Now

Exam:
Intake: 1 Sep 2025
Duration: 1 Day
Guaranteed: TBC
Modality: VILT
Price:

RM1,200.00Enroll Now

Exam:
Intake: 1 Dec 2025
Duration: 1 Day
Guaranteed: TBC
Modality: ILT
Price:

RM1,200.00Enroll Now

Exam:
Intake: 1 Dec 2025
Duration: 1 Day
Guaranteed: TBC
Modality: VILT
Price:

RM1,200.00Enroll Now

Exam:

Exam & Certification

Microsoft Applied Skills: Defend against cyberthreats with Microsoft Defender XDR

Validate your technical skills and open doors to new possibilities of advancement with Microsoft Applied Skills.

To earn this Microsoft Applied Skills credential, learners demonstrate the ability to use Microsoft Defender XDR to detect and respond to cyberthreats.

Candidates for this credential should be familiar with investigating and gathering evidence about attacks on endpoints. They should also have experience using Microsoft Defender for Endpoint and Kusto Query Language (KQL).

Tasks performed

  • Configure a Defender XDR environment
  • Manage devices by using Defender for Endpoint
  • Use Defender XDR to manage incidents
  • Manage investigations on an endpoint
  • Perform Advanced Hunting with KQL to detect unique threats

Training & Certification Guide

Frequently Asked Questions