SC-900 exam is a Microsoft certification exam for the Microsoft 365 Fundamentals certification. The exam focuses on the fundamental knowledge and skills required for using Microsoft 365 services and concepts such as Microsoft Cloud services, security, compliance, and privacy, Microsoft Teams, and OneDrive for Business. The certification is designed for those who are new to the Microsoft 365 platform and want to demonstrate their knowledge and understanding of the Microsoft Cloud services and concepts.
The passing score for Microsoft's SC-900 exam is not publicly disclosed by Microsoft. However, Microsoft typically sets its certification exams to pass at a score of 700 out of 1000 points. This score is based on the difficulty level of the exam and the number of questions asked. The exact passing score for the SC-900 exam may be subject to change, so it's recommended to check the Microsoft website or the exam preparation materials for the latest information.
Prerequisites of SC-900
The prerequisites for the SC-900 exam are not specified by Microsoft. However, it is recommended that individuals seeking to take the exam have a basic understanding of cybersecurity concepts and technologies, as well as some experience working with Microsoft cloud services such as Microsoft 365. The exam measures one's ability to understand security, compliance, and privacy requirements in Microsoft cloud services, so having hands-on experience with these services is beneficial.
Skills Measured
The SC-900 exam, also known as Microsoft Security, Compliance, and Identity Fundamentals, measures a candidate's knowledge and understanding of various aspects of security, compliance, and identity in the Microsoft cloud environment. The skills measured by the SC-900 exam include
- Understanding of security, compliance, and identity concepts
- Knowledge of security and compliance requirements in Microsoft 365 and Azure services
- Understanding of identity protection, management, and access
- Knowledge of threat protection, data protection, and risk management
- Understanding of the principles of secure development and deployment
- Knowledge of security management and incident response
This exam is intended for individuals who want to gain a foundational understanding of security, compliance, and identity in the Microsoft cloud environment and those who are looking to pursue more advanced security certifications.
Describe the concepts of security, compliance and identity (10–15%)
Describe security and compliance concepts
- Describe the shared responsibility model
- Describe defense in depth
- Describe the Zero-Trust model
- Describe encryption and hashing
- Describe compliance concepts
Define identity concepts
- Define identity as the primary security perimeter
- Define authentication
- Define authorization
- Describe identity providers
- Describe Active Directory
- Describe the concept of Federation
Describe the capabilities of Microsoft Azure Active Directory (Azure AD)(25–30%)
Describe the basic identity services and identity types of Azure AD
- Describe Azure AD
- Describe Azure AD identities
- Describe hybrid identity
- Describe the different external identity types
Describe the authentication capabilities of Azure AD
- Describe the authentication methods available in Azure AD
- Describe Multi-factor Authentication
- Describe self-service password reset
- Describe password protection and management capabilities available in Azure AD
Describe access management capabilities of Azure AD
- Describe conditional access
- Describe the benefits of Azure AD roles.
- Describe the benefits of Azure AD role-based access control
Describe the identity protection and governance capabilities of Azure AD
- Describe identity governance in Azure AD
- Describe entitlement management and access reviews
- Describe the capabilities of Azure AD Privileged Identity Management (PIM)
- Describe Azure AD Identity Protection
Describe the capabilities of Microsoft Security solutions (25–30%)
Describe basic security capabilities in Azure
- Describe Azure DDoS protection
- Describe Azure Firewall
- Describe Web Application Firewall
- Describe Network Segmentation with Azure Virtual Networks
- Describe Azure Network Security groups
- Describe Azure Bastion and JIT Access
- Describe ways Azure encrypts data
Describe security management capabilities of Azure
- Describe Cloud security posture management (CSPM)
- Describe Microsoft Defender for Cloud
- Describe the enhanced security features of Microsoft Defender for Cloud
- Describe security baselines for Azure
Describe security capabilities of Microsoft Sentinel
- Define the concepts of SIEM and SOAR
- Describe how Microsoft Sentinel provides integrated threat management
- Describe threat protection with Microsoft 365 Defender
- Describe Microsoft 365 Defender services
- Describe Microsoft Defender for Office 365
- Describe Microsoft Defender for Endpoint
- Describe Microsoft Defender for Cloud Apps
- Describe Microsoft Defender for Identity
- Describe the Microsoft 365 Defender portal
Describe the capabilities of Microsoft compliance solutions (25–30%)
Describe Microsoft’s Service Trust Portal and privacy principles
- Describe the offerings of the Service Trust portal
- Describe Microsoft’s privacy principles
Describe the compliance management capabilities of Microsoft Purview
- Describe the Microsoft Purview compliance portal
- Describe compliance manager
- Describe the use and benefits of compliance score
Describe the information protection and data lifecycle management capabilities of Microsoft Purview
- Describe data classification capabilities
- Describe the benefits of content explorer and activity explorer
- Describe sensitivity labels
- Describe Data Loss Prevention (DLP)
- Describe Records Management
- Describe Retention Polices and Retention Labels
Describe insider risk capabilities in Microsoft Purview
- Describe Insider Risk Management
- Describe communication compliance
- Describe information barriers
Describe resource governance capabilities in Azure
- Describe Azure Policy
- Describe Azure Blueprints
- Describe the Microsoft Purview unified data governance solution
Reference - Microsoft Learning path
Social Plugin