SC-200 – Microsoft Security Operations Analyst

The Microsoft security operations analyst collaborates with organizational stakeholders to secure information technology systems for the organization. Their goal is to reduce organizational risk by rapidly remediating active attacks in the environment, advising on improvements to threat protection practices, and referring violations of organizational policies to appropriate stakeholders. Responsibilities include threat management, monitoring, and response by using a variety of security solutions across their environment. The role primarily investigates, responds to, and hunts for threats using Microsoft Sentinel, Microsoft Defender for Cloud, Microsoft 365 Defender, and third-party security products. Since the security operations analyst consumes the operational output of these tools, they are also a critical stakeholder in the configuration and deployment of these technologies. Candidates for this role should be familiar with attack vectors, cyberthreats, incident management, and Kusto Query Language (KQL). Candidates should also be familiar with Microsoft 365 and Azure services. You may be eligible for ACE college credit if you pass this certification exam. See ACE college credit for certification exams for details. Important The English language version of this exam was updated on August 5, 2022. Please download the study guide listed in the “Tip” box to see the current skills measured. If a localized version of this exam is available, it will be updated approximately eight weeks after this date. Passing score: 700. Learn more about exam scores. Tip Download the SC-200 study guide to help you prepare for the exam Demo the exam experience by visiting our Exam Sandbox

Course Content

Expand All
Not Enrolled

Course Includes

  • 8 Learning Paths
  • 51 Modules
  • Course Certificate