Skip to content
Microsoft Defender for Cloud
Intermediate

Secure Multi-Cloud Workloads with Defender for Cloud

Cloud security posture management and workload protection across Azure, AWS, and GCP.

Start Learning Hands-on labs and real-world scenarios
About

About This Course

Microsoft Defender for Cloud is the cloud security posture management and workload protection platform for Azure, AWS, and GCP. This course covers both CSPM and CWP — you will learn to assess your security posture with secure score, remediate misconfigurations, and deploy protection plans that detect threats against your actual workloads.

The course starts with foundational CSPM: enabling Defender for Cloud, understanding the secure score model, and working through recommendations that address real security gaps. You will see how regulatory compliance assessments map controls from standards like CIS, NIST, and PCI DSS to your Azure resource configurations. Then the course moves into workload protection — enabling Defender plans for servers, storage, databases, containers, App Services, and Key Vault.

Multi-cloud is a practical reality, and Defender for Cloud supports AWS and GCP workloads through connectors. You will configure multi-cloud onboarding and see how recommendations and alerts flow into the same Defender for Cloud dashboard. The final section covers security alerts, automated response with workflow automation, and integration with Sentinel for centralized SOC visibility.

Outcomes

What You'll Learn

01

Enable and configure Defender for Cloud across Azure subscriptions and multi-cloud environments

02

Interpret secure score recommendations and remediate security misconfigurations

03

Deploy workload protection plans for VMs, storage, databases, and containers

04

Configure security alerts, automation, and integration with Microsoft Sentinel

Before You Start

Prerequisites

  • Azure administration experience is recommended
  • An Azure subscription for hands-on labs — a free trial works
Audience

Who Is This Course For

This course is for cloud security engineers, Azure administrators, and security architects who need to secure cloud workloads. If you manage Azure subscriptions and need to improve your security posture, or if you are extending Defender for Cloud to AWS or GCP environments, this course gives you the practical knowledge to deploy and operate the platform. Azure administration experience is recommended.

Curriculum

What's Inside

01

Cloud Security Posture Management

  • Enabling Defender for Cloud and secure score
  • Security recommendations and remediation
  • Regulatory compliance dashboards
  • Cloud security graph and attack path analysis
02

Workload Protection Plans

  • Defender for Servers and vulnerability assessment
  • Defender for Storage, SQL, and Cosmos DB
  • Defender for Containers and Kubernetes
  • Defender for App Service and Key Vault
03

Multi-Cloud Security

  • AWS account onboarding and connector configuration
  • GCP project integration
  • Cross-cloud security recommendations
  • Unified security posture across providers
04

Alerts and Automation

  • Security alert investigation and triage
  • Workflow automation with Logic Apps
  • Sentinel integration for centralized monitoring
  • Suppression rules and alert tuning