Kurs i Salangen

Kurset passer for: deg som skal bli: apotektekniker – helsesekretær - tannhelsesekretær deg som har helse- og sosialfag vg1 eller grunnkurs samt fellesfagene/allmennfagene fra vg1 og vg2/grunnkurs og vk-1. Kursets innhold er: Felles programfag: Helsefremmende arbeid • Kommunikasjon og samhandling • Yrkesutøvelse

Nettkurs kombinert med forelesninger i form av lyd og bilde på din egen PC. Felles programfag: Helsefremmende arbeid • Kommunikasjon og samhandling • Yrkesutøvelse

Nettkurs kombinert med forelesninger i form av lyd og bilde på din egen PC. Start:          Når du selv ønskerOmfang:      En innlevering for hvert fag – i alt 3Pris:            Felles programfag: Kr. 10.000,- ekskl. lærebøker og eksamensavgift                    (kan deles i 4 månedlige avdrag med kr. 200,- i avdragsgebyr pr. avdragTidsplan Kurset kan tas etter egen tidsplan med innlevering av mapper til retting. Du velger selv når du vil starte opp med kurset og hvor lang tid du vil bruke. Innleveringer En innlevering for hvert fag – i alt 3. Kurset er i tråd med læreplanens kompetansemål. Det følger med ulike nettressurser som du kan benytte så mye og så ofte du vil.Lånekassen  Utdanningen er godkjent for lån og stipend i Lånekassen. For å få lån omgjort til stipend kreves det at deltaker avlegger privatisteksamen i samtlige fag som utgjør 4 eksamener.Eksamensform  Privatisteksamen etter gjeldende regler. Oppmelding elektronisk: www.privatistweb.no Fører frem til fagbrev. Er du organisert? Undersøk med ditt fagforbund om du kan søke å få dekket kursavgift. Er du organisert? Undersøk med ditt fagforbund om du kan søke å få dekket kursavgift. [-]

Modulen dekker bruk og effekt av Lean og agile arbeidsmåter, og hvordan dette kan utnyttes til fordel for organisasjonen. Kurset vil gi kandidatene en praktisk og strategisk metode for å planlegge og levere kontinuerlig forbedring med nødvendig smidighet.  E-læringskurset inneholder 18 timer med undervisning, og er delt inn i 12 moduler. Les mer om ITIL® 4 på AXELOS sine websider Du vil motta en e-post med tilgang til e-læringen, sertifiseringsvoucher og digital bok fra Peoplecert. Du avtaler tid for sertifiseringen som beskrevet i e-posten fra Peoplecert.   [-]

Vårt lederkurs gir deg grunnleggende kunnskaper om motiverende ledelse. Kurset skal gi deltakerne en faglig forståelse for ulike utfordringer knyttet til ledelse der mellommenneskelige relasjoner inngår. Nettkurs eller brevkurs kombinert med forelesninger i form av lyd og bilde på din egen PC.     Start:         Når du selv ønsker. Omfang:     3 innleveringer Pris:           kr. 4.500,- (kan deles i 4 månedlige avdrag med                    kr. 200,- i avdragsgebyr for hvert avdrag).    Tidsplan • Kurset kan tas etter egen tidsplan med innlevering av besvarelser til veiledning. • Du velger selv når du vil starte opp med lederkurset og hvor lang tid du vil      bruke.   Innleveringer • Innlevering av 3 besvarelser   Målgruppe for vårt lederkurs Alle som har et verv eller arbeid, eller ønsker et verv eller arbeid der mellommenneskelige relasjoner og ledelse inngår.   Mål for lederkurset Kurset skal gi deltakerne en faglig forståelse for ulike utfordringer knyttet til lederverv og ledelse.   Kursbeskrivelse Vårt lederkurs gir deg grunnleggende kunnskaper om ledelse.   Tema - Lederkurs • Ledelse i dag • Dagens utfordringer • Dagens muligheter • Ledelsesteori • Administrasjon • Organisasjon • Lederkompetanse • Hvor læres denne kompetansen? • Ledertyper • Personlighet • Kommunikasjon • Hva er god kommunikasjon? • Hvilke utfordringer møter vi i kommunikasjon? • Relasjonskompetanse • Makt • Tillit • Motivasjon • Kreativitet • Behov • Gruppe • Team • Utvikling • Vi-følelse • Helhetlig tenking   Litteratur Relasjonell ledelse Hans Morten Skivik ISBN 9788205329669 Gyldendal 2004   Vurdering  Bestått/ikke bestått.   Kursbevis  Kursbevis utstedes til de som har bestått og som har betalt kursavgiften i sin helhet.   Er du organisert? Undersøk med ditt fagforbund om du kan søke å få dekket kursavgiften for vårt lederkurs.   Dersom du ønsker å komme i kontakt med studieekspert kan du trygt ta kontakt med oss på telefon: 913 58 038913 58 038 eller sende oss E-post til: postmottak@kompetansesenter-bedriftshjelp.com Vi har lang erfaring med kurs og studier og vet hva som vil passe deg best etter en kort og uforpliktende samtale. [-]

Ingeniørpakken gir til sammen 2 realfagspoeng og passer for deg som vil bli ingeniør, men som mangler fag eller må forbedre fagene. Har du studiekompetanse, men mangler realfag for å kunne søke ingeniørstudier? Fagene du trenger, er matematikk R1 og R2 og fysikk 1. Her kan du prøve Matematikk eller Fysikk (gratis). Gjennomføring NettstudierDu bestemmer hva, hvor og når du vil lære. Her får du varierte leksjoner i form av tekster, video, quiz, podcast, veiledning og oppgaver. Du har alltid kontakt med din personlige lærer hos K2. Målet er å gjøre deg best mulig forberedt til eksamen. Her kan du prøve alle kursene (gratis). Din digitale læringsplattform Den nettbaserte læringsportalen til K2 er tilpasset både mobil, nettbrett og pc. Det gir deg enkelt tilgang til å studere faget på en engasjerende og spennende måte, uansett hvor du er.  Eksamen Som deltaker ved K2 er du privatist og må ta eksamen i fagene for å få karakter. Oppmeldingsfristene er normalt 15. september og 1. februar. Husk at betaling av eksamensavgiften skjer ved oppmelding.  Velg Ingeniørpakken og få tilgang til Fysikk 1, Matematikk R1 og Matematikk R2 i 12 måneder. Du velger selv når du vil ta eksamen.  Fysikk 1, eksamen nov/des eller mai/juni Matematikk R1, eksamen nov/des eller mai/juni Matematikk R2, eksamen nov/des eller mai/juni Veien videre Om du har generell studiekompetanse (GENS) og velger å ta fagene fysikk 1 og matematikk R1 og R2 som privatist, da oppfyller du opptakskravene til flere studier, inkludert ingeniørstudier. Se praktisk info for frister og opptak til universitet og høyskole. Gratis veiledning Vi har veiledere med mange års erfaring som står klare til å hjelpe deg! Er du usikker på hva som skal til for å få studiekompetanse, ta gjerne kontakt med oss for gratis veiledning.  Ønsker du mer informasjon om kurset, velg "Send meg info"-knappen under. Vil du chatte med oss, klikk på ikonet nederst i høyre hjørne. Lånekassestøtte Utdanningen er godkjent i lånekassen. Du søker direkte via lanekassen.no. Alt du må vite om lån og stipend fra Lånekassen som deltaker hos K2 utdanning Støtteordning Er du organisert i en fagforening, kan du i de fleste fagforeningene søke støtte til utdanning. Dersom du er organisert bør du sjekke med din fagforening om muligheter for støtte, frister og hvordan du søker. Forkunnskaper Du må ha fullført grunnskole eller tilsvarende opplæring. Minoritetsspråklige bør ha minimum B1-nivå i norsk muntlig og skriftlig. Dersom du har behov for å lære mere norsk før du starter på utdanning har vi norskkurs på forskjellig nivå (A1-B2). Språkkursene er digitale med personlig oppfølging fra lærer. Se alle norskkurs K2 tilbyr. Krav til utstyr Som deltaker hos K2 må du ha tilgang til pc på eksamen. I tillegg trenger du PC-versjonen av Office eller tilsvarende programmer. Se hva du har tilgang til av nettbaserte ressurser på eksamen. Praktisk info Du finner svar på ofte stilte spørsmål på nettsiden vår under praktisk info.     [-]

COURSE OVERVIEW  This course prepares you to administer a vSphere infrastructure for an organization of any size. This course is the foundation for most VMware technologies in the software-defined data center. Product Alignment: VMware ESXi 8.0 VMware vCenter 8.0 TARGET AUDIENCE System administrators System engineers COURSE OBJECTIVES By the end of the course, you should be able to meet the following objectives: Install and configure ESXi hosts Deploy and configure vCenter Use the vSphere Client to create the vCenter inventory and assign roles to vCenter users Create virtual networks using vSphere standard switches and distributed switches Create and configure datastores using storage technologies supported by vSphere Use the vSphere Client to create virtual machines, templates, clones, and snapshots Create content libraries for managing templates and deploying virtual machines Manage virtual machine resource allocation Migrate virtual machines with vSphere vMotion and vSphere Storage vMotion Create and configure a vSphere cluster that is enabled with vSphere High Availability (HA) and vSphere Distributed Resource Scheduler Manage the life cycle of vSphere to keep vCenter, ESXi hosts, and virtual machines up to date COURSE CONTENT 1 Course Introduction Introductions and course logistics Course objectives 2 vSphere and Virtualization Overview Explain basic virtualization concepts Describe how vSphere fits in the software-defined data center and the cloud infrastructure Recognize the user interfaces for accessing vSphere Explain how vSphere interacts with CPUs, memory, networks, storage, and GPUs 3 Installing and Configuring ESXi Install an ESXi host Recognize ESXi user account best practices Configure the ESXi host settings using the DCUI and VMware Host Client 4 Deploying and Configuring vCenter Recognize ESXi hosts communication with vCenter Deploy vCenter Server Appliance Configure vCenter settings Use the vSphere Client to add and manage license keys Create and organize vCenter inventory objects Recognize the rules for applying vCenter permissions View vCenter logs and events 5 Configuring vSphere Networking Configure and view standard switch configurations Configure and view distributed switch configurations Recognize the difference between standard switches and distributed switches Explain how to set networking policies on standard and distributed switches 6 Configuring vSphere Storage Recognize vSphere storage technologies Identify types of vSphere datastores Describe Fibre Channel components and addressing Describe iSCSI components and addressing Configure iSCSI storage on ESXi Create and manage VMFS datastores Configure and manage NFS datastores 7 Deploying Virtual Machines Create and provision VMs Explain the importance of VMware Tools Identify the files that make up a VM Recognize the components of a VM Navigate the vSphere Client and examine VM settings and options Modify VMs by dynamically increasing resources Create VM templates and deploy VMs from them Clone VMs Create customization specifications for guest operating systems Create local, published, and subscribed content libraries Deploy VMs from content libraries Manage multiple versions of VM templates in content libraries 8 Managing Virtual Machines Recognize the types of VM migrations that you can perform within a vCenter instance and across vCenter instances Migrate VMs using vSphere vMotion Describe the role of Enhanced vMotion Compatibility in migrations Migrate VMs using vSphere Storage vMotion Take a snapshot of a VM Manage, consolidate, and delete snapshots Describe CPU and memory concepts in relation to a virtualized environment Describe how VMs compete for resources Define CPU and memory shares, reservations, and limits 9 Deploying and Configuring vSphere Clusters Create a vSphere cluster enabled for vSphere DRS and vSphere HA View information about a vSphere cluster Explain how vSphere DRS determines VM placement on hosts in the cluster Recognize use cases for vSphere DRS settings Monitor a vSphere DRS cluster Describe how vSphere HA responds to various types of failures Identify options for configuring network redundancy in a vSphere HA cluster Recognize vSphere HA design considerations Recognize the use cases for various vSphere HA settings Configure a vSphere HA cluster Recognize when to use vSphere Fault Tolerance 10 Managing the vSphere Lifecycle Enable vSphere Lifecycle Manager in a vSphere cluster Describe features of the vCenter Update Planner Run vCenter upgrade prechecks and interoperability reports Recognize features of vSphere Lifecycle Manager Distinguish between managing hosts using baselines and managing hosts using images Describe how to update hosts using baselines Describe ESXi images Validate ESXi host compliance against a cluster image and update ESXi hosts Update ESXi hosts using vSphere Lifecycle Manager Describe vSphere Lifecycle Manager automatic recommendations Use vSphere Lifecycle Manager to upgrade VMware Tools and VM hardware   [-]

Etter gjennomført kurs skal kursdeltagerne bla. kunne bruke Inventor til å:• Lage modeller• Generere tegninger ut i fra modell• Lage sammenstillinger• Utføre de vanligste tegne- og editeringsfunksjoner• Målsette og påføre tekstKursinnhold:• Grunnleggende begrep og arbeidsmetoder • Parametrisk part-modellering• Arbeide med skisser• Features• Arbeide med sammenstillinger• 2D-layout - oppsett og innstillinger• Generere 2D-tegninger fra modell• Målsetting og innsetting av stykklister [-]

Målet er å utdanne reflekterte yrkesutøvere som tar initiativ til å planlegge, organisere og iverksette tiltak for å fremme helse, forebygge sykdom, og ivareta fysisk og psykisk helse hos eldre som har behov for helsehjelp. Fagskoleutdanningen Helse, aldring og aktiv omsorg, er akkreditert av NOKUT og gir 60 studiepoeng.  Studiet er lagt opp som et deltidsstudium med styrt progresjon og foregår via nettstudier. Finansiering Utdanningen er finansiert av Kunnskapsdepartementet og derfor gratis for studentene. Se nettsiden til studie for mer informasjon: https://medlearn.no/finn-ditt-studium/helse-aldring-og-aktiv-omsorg/ [-]

COURSE OVERVIEW The Certified Information Systems Security Professional (CISSP) is the most globally recognized certification in the cybersecurity market. CISSP validates a cybersecurity professional’s deep technical and managerial knowledge and experience to effectively design, engineer and manage an organization’s overall security posture. Please note an exam voucher is included as part of this course TARGET AUDIENCE Cybersecurity professionals with at least 5 years in the information security field. Member data has shown that amajority of CISSP holders are in middle management and a much smaller proportion are in senior or junior/entry-level positions. Roles include:• Chief Information Officer• Chief Information Security Officer• Chief Technology Officer• Compliance Manager / Officer• Director of Security• Information Architect• Information Manager / Information RiskManager or Consultant• IT Specialist / Director / Manager• Network / System Administrator• Security Administrator• Security Architect / Security Analyst• Security Consultant• Security Manager• Security Systems Engineer / Security EngineerSectorsCISSP is relevant across all sectors and industries, including:• Aerospace• Automotive• Banking, financial services, insurance (BFSI)• Construction• Cybersecurity• Energy• Engineering• Government• Healthcare, IT products, services, consulting• Manufacturing• Pharma• Retail• Telecom COURSE OBJECTIVESAfter completing this course you should be able to: Understand and apply fundamental concepts and methods related to the fields of information technology and security Align overall organizational operational goals with security functions and implementations. Understand how to protect assets of the organization as they go through their lifecycle. Understand the concepts, principles, structures and standards used to design, implement, monitor and secure operating systems, equipment, networks, applications and those controls used to enforce various levels of confidentiality, integrity and availability. Implement system security through the application of security design principles and application of appropriate security control mitigations for vulnerabilities present in common information system types and architectures. Understand the importance of cryptography and the security services it can provide in today’s digital and information age. Understand the impact of physical security elements on information system security and apply secure design principles to evaluate or recommend appropriate physical security protections. Understand the elements that comprise communication and network security coupled with a thorough description of how the communication and network systems function. List the concepts and architecture that define the associated technology and implementation systems and protocols at Open Systems Interconnection (OSI) model layers 1-7. Identify standard terms for applying physical and logical access controls to environments related to their security practice. Appraise various access control models to meet business security requirements. Name primary methods for designing and validating test and audit strategies that support business requirements. Enhance and optimize an organization’s operational function and capacity by applying and utilizing appropriate security controls and countermeasures. Recognize risks to an organization’s operational endeavours and assess specific threats, vulnerabilities and controls. Understand the System Lifecycle (SLC) and the Software Development Lifecycle (SDLC) and how to apply security to it; identify which security control(s) are appropriate for the development environment; and assess the effectiveness of software security. COURSE CONTENT Domain 1: Security and Risk Management Domain 2: Asset Security Domain 3: Security Architecture and Engineering Domain 4: Communication and Network Security Domain 5: Identity and Access Management (IAM) Domain 6: Security Assessment and Testing Domain 7: Security Operations Domain 8: Software Development Security TEST CERTIFICATION Recommended as preparation for the following exam: (ISC)2 Certified Information Systems Security Professional Gaining this accreditation is not just about passing the exam, there are a number of other criteria that need to be met including 5 years of cumulative, paid work experience in two or more of the eight domains of the (ISC)²® CISSP CBK . Full details can be found at https://www.isc2.org/cissp/default.aspx Those without the required experience can take the exam to become an Associate of (ISC)²  while working towards the experience needed for full certification Please note an exam voucher is included as part of this course   [-]

Excel Videregående [-]

I samarbeid med Norsk Eltavleforening som også er faglig ansvarlig.   I dette temakurset gis det en oversikt over metoder, viktige tilleggskrav og alternative løsninger ved inntak i bygninger og løsningsprinsipper i tavler ved tilknytning av parallelle strømkilder. Selv om normserien NEK 439, Tavlenormen, alltid er gjeldende for all tavleproduksjon, vil annet regelverk i tillegg gjøres gjeldende for tavler for særskilte formål og når tavler tilknyttes flere strømkilder. Eksempler på slikt regelverk er NEK 399 og NY Tolkning 11 av NEK 400:2018 NEK 399 beskriver og definerer standardiserte metoder og prinsipper for inntak og distribusjon i bygninger, og nylig vedtatt Tolkning 11 av NEK 400:2018, anviser løsningsprinsipper som skal legges til grunn ved tilknytning av parallelle strømforsyningsenheter og nøytralleder.   Foreleser: Hans-Petter NybakkFaglig lederNorsk Eltavleforening   Teknisk arrangør: Quality Norway AS. [-]

Kurset er laget for deg som har gode språkkunskaper og ønsker å arbeide som reiseleder i Norge eller utlandet. Som reiseleder bør du være servicebevisst, fleksibel, og flink til å organisere. Du bør også like høyt arbeidstempo. Kurset beskriver vanlige arbeidsoppgaver med fokus på forberedelse før avreise, manus, formidling av informasjon, innsjekking, dagsprogram, samarbeid med lokale guider og arbeidsoppgaver etter reisen. Reiseleder består av følgende 3 studieenheter: Vanlige arbeidsoppgaver Cruise og elvecruise Rundreiser og destinasjoner [-]

RH294: Red Hat System Administration III: Linux Automation with Ansible [-]

Kvalitetsledelse (Quality Manager)  Dette kurset er for deg som vil ha mer dybdekunnskap, og/eller sertifisere deg som kvalitetsleder. Kurset tar for seg ISO 9001 da den ligger som en grunnsten for kvalitetsfaget, men vi skal også innom andre områder som er viktig for å få styringssystemer til å fungere i praksis. Pensumet til kurset er satt av den Europeiske foreningen EOQ, slik at alle som velger å sertifisere seg i Europa har samme minimums-kompetanse. Vi kommer til å følge et case gjennom kurset slik at du får mulighet til å trene på noen av teamene vi er innom. Gjennom hele kurset legges det opp til å gjøre innholdet enkelt og praktisk. Kvalitetsledelse handler om sunn fornuft satt i system.   Kursleder er Siri Mathiesen, se gjerne egen omtale om Siri på KRN Academy, www.qrn.no Vi som underviser hos KRN er personer med et sterkt engajsement for det vi underviser i, og det merkes når du er på kurs. Det gjør innholdet levende og interessant. Du kan gjerne få referanser fra oss.  [-]

Sikkerhetssenteret Rørvik tilbyr i samarbeid med Norsk Sertifisering AS, 24 timers kurs for akkreditert sertifisering av ISM revisorer og revisjonsledere. Kort om kursinnholdet: ISM koden - gjennomgang og oppgaver NS EN  ISO 19011 Standard rof revisjonsteknikk - gjennomgang og oppgaver Revisjonsteknik, revisjonstyper etc. Aktuelt lovverk, gjennom,gang og diskusjoner, forklaringer Avviksbehandling, nestenulykker, kontinuerlig forbedring og oppgaver Ledelsens gjennomgåelse, skipsledelsens gjennomgåelse Ved gjennomgått og bestått kurs kan man i etterkant ta digital eksamen til Norsk Sertifisering AS for å bli sertifisert revisjonsleder.    Detaljert informasjon vil bli gitt under kurset.  [-]

COURSE OVERVIEW Learn how to investigate, respond to, and hunt for threats using Microsoft Azure Sentinel, Azure Defender, and Microsoft 365 Defender. In this course you will learn how to mitigate cyberthreats using these technologies. Specifically, you will configure and use Azure Sentinel as well as utilize Kusto Query Language (KQL) to perform detection, analysis, and reporting. The course was designed for people who work in a Security Operations job role and helps learners prepare for the exam SC-200: Microsoft Security Operations Analyst. TARGET AUDIENCE The Microsoft Security Operations Analyst collaborates with organizational stakeholders to secure information technology systems for the organization. Their goal is to reduce organizational risk by rapidly remediating active attacks in the environment, advising on improvements to threat protection practices, and referring violations of organizational policies to appropriate stakeholders. Responsibilities include threat management, monitoring, and response by using a variety of security solutions across their environment. The role primarily investigates, responds to, and hunts for threats using Microsoft Azure Sentinel, Azure Defender, Microsoft 365 Defender, and third-party security products. Since the Security Operations Analyst consumes the operational output of these tools, they are also a critical stakeholder in the configuration and deployment of these technologies. COURSE OBJECTIVES Explain how Microsoft Defender for Endpoint can remediate risks in your environment Create a Microsoft Defender for Endpoint environment Configure Attack Surface Reduction rules on Windows 10 devices Perform actions on a device using Microsoft Defender for Endpoint Investigate domains and IP addresses in Microsoft Defender for Endpoint Investigate user accounts in Microsoft Defender for Endpoint Configure alert settings in Microsoft Defender for Endpoint Explain how the threat landscape is evolving Conduct advanced hunting in Microsoft 365 Defender Manage incidents in Microsoft 365 Defender Explain how Microsoft Defender for Identity can remediate risks in your environment. Investigate DLP alerts in Microsoft Cloud App Security Explain the types of actions you can take on an insider risk management case. Configure auto-provisioning in Azure Defender Remediate alerts in Azure Defender Construct KQL statements Filter searches based on event time, severity, domain, and other relevant data using KQL Extract data from unstructured string fields using KQL Manage an Azure Sentinel workspace Use KQL to access the watchlist in Azure Sentinel Manage threat indicators in Azure Sentinel Explain the Common Event Format and Syslog connector differences in Azure Sentinel Connect Azure Windows Virtual Machines to Azure Sentinel Configure Log Analytics agent to collect Sysmon events Create new analytics rules and queries using the analytics rule wizard Create a playbook to automate an incident response Use queries to hunt for threats Observe threats over time with livestream COURSE CONTENT Module 1: Mitigate threats using Microsoft Defender for Endpoint Implement the Microsoft Defender for Endpoint platform to detect, investigate, and respond to advanced threats. Learn how Microsoft Defender for Endpoint can help your organization stay secure. Learn how to deploy the Microsoft Defender for Endpoint environment, including onboarding devices and configuring security. Learn how to investigate incidents and alerts using Microsoft Defender for Endpoints. Perform advanced hunting and consult with threat experts. You will also learn how to configure automation in Microsoft Defender for Endpoint by managing environmental settings.. Lastly, you will learn about your environment's weaknesses by using Threat and Vulnerability Management in Microsoft Defender for Endpoint. Lessons M1 Protect against threats with Microsoft Defender for Endpoint Deploy the Microsoft Defender for Endpoint environment Implement Windows 10 security enhancements with Microsoft Defender for Endpoint Manage alerts and incidents in Microsoft Defender for Endpoint Perform device investigations in Microsoft Defender for Endpoint Perform actions on a device using Microsoft Defender for Endpoint Perform evidence and entities investigations using Microsoft Defender for Endpoint Configure and manage automation using Microsoft Defender for Endpoint Configure for alerts and detections in Microsoft Defender for Endpoint Utilize Threat and Vulnerability Management in Microsoft Defender for Endpoint Lab M1: Mitigate threats using Microsoft Defender for Endpoint Deploy Microsoft Defender for Endpoint Mitigate Attacks using Defender for Endpoint After completing module 1, students will be able to: Define the capabilities of Microsoft Defender for Endpoint Configure Microsoft Defender for Endpoint environment settings Configure Attack Surface Reduction rules on Windows 10 devices Investigate alerts in Microsoft Defender for Endpoint Describe device forensics information collected by Microsoft Defender for Endpoint Conduct forensics data collection using Microsoft Defender for Endpoint Investigate user accounts in Microsoft Defender for Endpoint Manage automation settings in Microsoft Defender for Endpoint Manage indicators in Microsoft Defender for Endpoint Describe Threat and Vulnerability Management in Microsoft Defender for Endpoint Module 2: Mitigate threats using Microsoft 365 Defender Analyze threat data across domains and rapidly remediate threats with built-in orchestration and automation in Microsoft 365 Defender. Learn about cybersecurity threats and how the new threat protection tools from Microsoft protect your organization’s users, devices, and data. Use the advanced detection and remediation of identity-based threats to protect your Azure Active Directory identities and applications from compromise. Lessons M2 Introduction to threat protection with Microsoft 365 Mitigate incidents using Microsoft 365 Defender Protect your identities with Azure AD Identity Protection Remediate risks with Microsoft Defender for Office 365 Safeguard your environment with Microsoft Defender for Identity Secure your cloud apps and services with Microsoft Cloud App Security Respond to data loss prevention alerts using Microsoft 365 Manage insider risk in Microsoft 365 Lab M2: Mitigate threats using Microsoft 365 Defender Mitigate Attacks with Microsoft 365 Defender After completing module 2, students will be able to: Explain how the threat landscape is evolving. Manage incidents in Microsoft 365 Defender Conduct advanced hunting in Microsoft 365 Defender Describe the investigation and remediation features of Azure Active Directory Identity Protection. Define the capabilities of Microsoft Defender for Endpoint. Explain how Microsoft Defender for Endpoint can remediate risks in your environment. Define the Cloud App Security framework Explain how Cloud Discovery helps you see what's going on in your organization Module 3: Mitigate threats using Azure Defender Use Azure Defender integrated with Azure Security Center, for Azure, hybrid cloud, and on-premises workload protection and security. Learn the purpose of Azure Defender, Azure Defender's relationship to Azure Security Center, and how to enable Azure Defender. You will also learn about the protections and detections provided by Azure Defender for each cloud workload. Learn how you can add Azure Defender capabilities to your hybrid environment. Lessons M3 Plan for cloud workload protections using Azure Defender Explain cloud workload protections in Azure Defender Connect Azure assets to Azure Defender Connect non-Azure resources to Azure Defender Remediate security alerts using Azure Defender Lab M3: Mitigate threats using Azure Defender Deploy Azure Defender Mitigate Attacks with Azure Defender After completing module 3, students will be able to: Describe Azure Defender features Explain Azure Security Center features Explain which workloads are protected by Azure Defender Explain how Azure Defender protections function Configure auto-provisioning in Azure Defender Describe manual provisioning in Azure Defender Connect non-Azure machines to Azure Defender Describe alerts in Azure Defender Remediate alerts in Azure Defender Automate responses in Azure Defender Module 4: Create queries for Azure Sentinel using Kusto Query Language (KQL) Write Kusto Query Language (KQL) statements to query log data to perform detections, analysis, and reporting in Azure Sentinel. This module will focus on the most used operators. The example KQL statements will showcase security related table queries. KQL is the query language used to perform analysis on data to create analytics, workbooks, and perform hunting in Azure Sentinel. Learn how basic KQL statement structure provides the foundation to build more complex statements. Learn how to summarize and visualize data with a KQL statement provides the foundation to build detections in Azure Sentinel. Learn how to use the Kusto Query Language (KQL) to manipulate string data ingested from log sources. Lessons M4 Construct KQL statements for Azure Sentinel Analyze query results using KQL Build multi-table statements using KQL Work with data in Azure Sentinel using Kusto Query Language Lab M4: Create queries for Azure Sentinel using Kusto Query Language (KQL) Construct Basic KQL Statements Analyze query results using KQL Build multi-table statements using KQL Work with string data using KQL statements After completing module 4, students will be able to: Construct KQL statements Search log files for security events using KQL Filter searches based on event time, severity, domain, and other relevant data using KQL Summarize data using KQL statements Render visualizations using KQL statements Extract data from unstructured string fields using KQL Extract data from structured string data using KQL Create Functions using KQL Module 5: Configure your Azure Sentinel environment Get started with Azure Sentinel by properly configuring the Azure Sentinel workspace. Traditional security information and event management (SIEM) systems typically take a long time to set up and configure. They're also not necessarily designed with cloud workloads in mind. Azure Sentinel enables you to start getting valuable security insights from your cloud and on-premises data quickly. This module helps you get started. Learn about the architecture of Azure Sentinel workspaces to ensure you configure your system to meet your organization's security operations requirements. As a Security Operations Analyst, you must understand the tables, fields, and data ingested in your workspace. Learn how to query the most used data tables in Azure Sentinel. Lessons M5 Introduction to Azure Sentinel Create and manage Azure Sentinel workspaces Query logs in Azure Sentinel Use watchlists in Azure Sentinel Utilize threat intelligence in Azure Sentinel Lab M5 : Configure your Azure Sentinel environment Create an Azure Sentinel Workspace Create a Watchlist Create a Threat Indicator After completing module 5, students will be able to: Identify the various components and functionality of Azure Sentinel. Identify use cases where Azure Sentinel would be a good solution. Describe Azure Sentinel workspace architecture Install Azure Sentinel workspace Manage an Azure Sentinel workspace Create a watchlist in Azure Sentinel Use KQL to access the watchlist in Azure Sentinel Manage threat indicators in Azure Sentinel Use KQL to access threat indicators in Azure Sentinel Module 6: Connect logs to Azure Sentinel Connect data at cloud scale across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds to Azure Sentinel. The primary approach to connect log data is using the Azure Sentinel provided data connectors. This module provides an overview of the available data connectors. You will get to learn about the configuration options and data provided by Azure Sentinel connectors for Microsoft 365 Defender. Lessons M6 Connect data to Azure Sentinel using data connectors Connect Microsoft services to Azure Sentinel Connect Microsoft 365 Defender to Azure Sentinel Connect Windows hosts to Azure Sentinel Connect Common Event Format logs to Azure Sentinel Connect syslog data sources to Azure Sentinel Connect threat indicators to Azure Sentinel Lab M6: Connect logs to Azure Sentinel Connect Microsoft services to Azure Sentinel Connect Windows hosts to Azure Sentinel Connect Linux hosts to Azure Sentinel Connect Threat intelligence to Azure Sentinel After completing module 6, students will be able to: Explain the use of data connectors in Azure Sentinel Explain the Common Event Format and Syslog connector differences in Azure Sentinel Connect Microsoft service connectors Explain how connectors auto-create incidents in Azure Sentinel Activate the Microsoft 365 Defender connector in Azure Sentinel Connect Azure Windows Virtual Machines to Azure Sentinel Connect non-Azure Windows hosts to Azure Sentinel Configure Log Analytics agent to collect Sysmon events Explain the Common Event Format connector deployment options in Azure Sentinel Configure the TAXII connector in Azure Sentinel View threat indicators in Azure Sentinel Module 7: Create detections and perform investigations using Azure Sentinel Detect previously uncovered threats and rapidly remediate threats with built-in orchestration and automation in Azure Sentinel. You will learn how to create Azure Sentinel playbooks to respond to security threats. You'll investigate Azure Sentinel incident management, learn about Azure Sentinel events and entities, and discover ways to resolve incidents. You will also learn how to query, visualize, and monitor data in Azure Sentinel. Lessons M7 Threat detection with Azure Sentinel analytics Threat response with Azure Sentinel playbooks Security incident management in Azure Sentinel Use entity behavior analytics in Azure Sentinel Query, visualize, and monitor data in Azure Sentinel Lab M7: Create detections and perform investigations using Azure Sentinel Create Analytical Rules Model Attacks to Define Rule Logic Mitigate Attacks using Azure Sentinel Create Workbooks in Azure Sentinel After completing module 7, students will be able to: Explain the importance of Azure Sentinel Analytics. Create rules from templates. Manage rules with modifications. Explain Azure Sentinel SOAR capabilities. Create a playbook to automate an incident response. Investigate and manage incident resolution. Explain User and Entity Behavior Analytics in Azure Sentinel Explore entities in Azure Sentinel Visualize security data using Azure Sentinel Workbooks. Module 8: Perform threat hunting in Azure Sentinel In this module, you'll learn to proactively identify threat behaviors by using Azure Sentinel queries. You'll also learn to use bookmarks and livestream to hunt threats. You will also learn how to use notebooks in Azure Sentinel for advanced hunting. Lessons M8 Threat hunting with Azure Sentinel Hunt for threats using notebooks in Azure Sentinel Lab M8 : Threat hunting in Azure Sentinel Threat Hunting in Azure Sentinel Threat Hunting using Notebooks After completing this module, students will be able to: Describe threat hunting concepts for use with Azure Sentinel Define a threat hunting hypothesis for use in Azure Sentinel Use queries to hunt for threats. Observe threats over time with livestream. Explore API libraries for advanced threat hunting in Azure Sentinel Create and use notebooks in Azure Sentinel [-]