> > > MOC 40554 Detailed outline

Microsoft Security Workshop: Implementing Windows 10 Security Features (MOC 40554)

Course Description Schedule Course Outline

Detailed Course Outline

Module 1: How Windows 10 uses modern hardware features for security

Today’s security threat landscape is dominated by aggressive and tenacious threats. Originally, malicious attackers mostly focused on gaining community recognition through their exploits. Since then, attackers’ motives have shifted toward financial gain. Modern attacks increasingly focus on large-scale intellectual property theft, targeted system degradation that can result in financial loss, and even cyberterrorism that threatens the security of individuals, businesses, and national or regional interests all over the world. Attackers are typically highly trained individuals and security experts, some of whom are in the employ of nation states that have large budgets and vast human resources. Threats like these require a different approach to cybersecurity. In this module we look at the hardware security features in the latest Windows 10 releases to help mitigate these threats.

Lessons
  • Secure Boot and Unified Extensible Firmware Interface (UEFI)-based protection
  • Additional Hardware Security

After completing this module, you will be able to:

  • Describe hardware security features in the latest Windows 10 releases
  • List additional hardware-based security features available in the latest Windows 10 releases.
  • Provide a high-level overview of Secure Boot and Trusted Platform Module (TPM)
  • Describe process of Secure Boot and Trusted Boot
  • Describe the protection mechanism employed by Early Launch Antimalware
  • Explain how Data Execution Prevention works
  • Identify benefits of Address Space Layout Randomization
  • Provide an overview of Protected Processes
  • List Windows 10 improvements to Heap Protection
  • List Windows 10 Kernel Pool hardening features
Module 2: Windows 10 software security features

Windows 10 includes a number of security features that protects your device, operating system, applications, and data. These features deliver comprehensive, built-in, and ongoing protection against cyber threats. In this module, you will learn about the most important of these features, including Windows Defender Firewall, Virtual Secure Mode, Credential Guard, Remote Credential Guard, and Device Guard, BitLocker and AppLocker, Windows Defender Antivirus, Windows Defender SmartScreen, and Windows 10 telemetry.

Lessons
  • Core built-in Windows 10 security features
  • Additional built-in software security features

After completing this module, you will be able to:

  • Describe core built-in Windows 10 security features
  • Describe additional built-in Windows 10 security features
  • Describe Windows Defender Firewall
  • Explain the architectural design that Virtual Secure Mode is based on
  • Describe Credential Guard
  • List the latest BitLocker enhancements
  • Provide an overview of Windows Defender Antivirus functionality
  • Explain the benefits provided by Windows Information Protection
  • List the Windows PowerShell networking cmdlets
  • Describe Windows Defender Remote Credential Guard
  • Explain the architectural design that Windows Defender Device Guard is based on
  • List the benefits of AppLocker with Windows Defender Device Guard
  • Describe Windows Defender Smart Screen
  • Provide an overview of Windows 10 Telemetry
Module 3: The latest Windows 10 Security-related Features

As described in the first module of this course, contemporary security threat landscape is one of aggressive and tenacious threats. In recognition of this landscape, Microsoft continues to strengthen the security posture of Windows 10 by developing new and enhance existing security features intended to make it difficult and costly to find and exploit software vulnerabilities. These features are designed to: > Eliminate entire classes of vulnerabilities > Break exploitation techniques > Contain the damage and prevent persistence > Limit the window of opportunity to exploit This module provides an overview of some of the software and firmware threats faced in the current security landscape, and the mitigations that the latest versions of Windows 10 offer in response to these threats.

Lessons
  • An overview of the latest Windows 10 security-related features
  • Windows 10 Ransomware Case Study
Lab: Implementing Windows Defender Firewall with Advanced Security on Domain-joined Windows 10 Clients
  • Implement end-to-end IPsec connectivity between a Windows 10 domain-joined client and a Windows Server
Lab: Implementing BitLocker on Domain-joined Windows 10 Clients
  • Encrypt non-operating system volumes by using BitLocker
  • Recovering access to BitLocker-encrypted volumes
Lab: Implementing AppLocker on Domain-joined Windows 10 Clients
  • Implement AppLocker on a domain-joined Windows 10 client
Lab: Implementing Windows Defender Device Guard Code Integrity on Domain-joined Windows 10 Clients
  • Implement Windows Defender Device Guard Code Integrity on a domain-joined Windows 10 client
Lab: Implementing Windows Defender Remote Credential Guard and Remote Admin mode on Domain-joined Windows
  • Implement Remote Desktop session protection with Remote Credential Guard
  • Implement Remote Desktop session protection with Restricted Admin Mode

After completing this module, you will be able to:

  • Describe the functionality Enterprise Certificate Pinning
  • Provide an overview of Windows Hello and Windows Hello for Business
  • Locate the listing of Windows 10 security settings configurable via Group Policy
  • Explain the benefits of Windows Defender Security Center
  • List the benefits of Control Flow Guard and Windows Defender Exploit Guard
  • Describe the functionality of Windows Defender Application Guard
  • Provide an overview of Windows Defender Advanced Threat Protection
 

Cookies help us deliver our services. By using our services, you agree to our use of cookies.   Got it!