Passed Exam AZ-500: Microsoft Certified Azure Security Engineer #Azure @MSLearning

3 min read


Microsoft is keep evolving their learning programs to help you and your career keep pace with today’s demanding IT environments. At Ignite in September 2018, Microsoft announced a new role-based certifications to help you and your career keep pace with today’s business requirements. They are evolving their learning program to better offer what you need to skill up, prove your expertise to employers and peers, and get the recognition—and opportunities—you’ve earned. Check the following document to have a complete overview of the new Microsoft certification program published on September 24, 2018. Microsoft is planning to announce more role-based certifications in 2019.

After passing the Microsoft Azure Solutions Expert exam, as well as the Azure Developer Associate exam, the Microsoft Azure Administrator certification, and the Microsoft Azure Fundamentals exam. As I started taking the shift towards information security, I decided to sit for the Microsoft Azure Security Engineer exam.

I am so happy and grateful now that I passed the AZ-500 Microsoft Certified: Azure Security Engineer Associate. I figured that I would share my experience in this post to help you prepare and tackle this exam successfully.

In this exam, I got around 41 questions in total with 1 case study, and the total time for this exam is 180 minutes. The questions do pretty much match the list of skills measured below.

Exam Target Audience

The Azure Security Engineer implements security controls, maintains the security posture, and finds and remediates vulnerabilities by using a variety of security tools. Responsibilities include helping protect data, applications, and networks; managing identity and access; implementing threat protection; and responding to security incident escalations. The Azure Security Engineer often serves as part of a larger team dedicated to cloud-based management and security. The Azure Security Engineer might also help secure hybrid environments as part of an end-to-end infrastructure.

The Azure Security Engineer should have strong skills in scripting and automation; a deep understanding of networking, virtualization, and cloud n-tier architecture; and a strong familiarity with cloud capabilities in general and Microsoft Azure products and services in particular. The Azure Security Engineer should also be familiar with other Microsoft products and services.

The Azure Security Engineer role doesn’t focus on helping secure Microsoft 365 and remains separate from the M365 Security and Compliance Administrator role.

Skills measured on this exam

This exam measures your ability to accomplish the technical topics listed below based on the latest update from Microsoft:

Manage identity and access (20-25%)

  • Understand the Zero Trust Model.
  • Configure Microsoft Azure Active Directory for workloads.
  • Configure Microsoft Azure AD Privileged Identity Management.
  • Configure Microsoft Azure tenant security.

Implement platform protection (35-40%)

  • Implement network security.
  • Implement host security.
  • Configure container security.
  • Implement Microsoft Azure Resource management security.

Manage security operations (15-20%)

  • Configure security services.
  • Configure security policies.
  • Manage security alerts.

Secure data and applications (30-35%)

  • Configure security policies to manage data.
  • Configure security for data infrastructure.
  • Configure encryption for data at rest.
  • Implement security for application delivery.
  • Configure application security.
  • Configure and manage Key Vault.

Lessons Learned and Exam Preparation

Practice, practice and read… I cannot stress enough that hands-on experience and understanding all the security concepts will help you to pass this exam. The key success to pass this exam is to work with Microsoft Azure on daily basis, and especially cloud governance and security. You can create your free Azure account today and start practicing the latest and greatest security features.

I usually use Microsoft Azure Security Documentation which is a great resource to learn, and I use Microsoft Learn the new learning approach to explore more advanced Azure security topics, which I highly recommend to check it out.

You can watch the free Azure Security Expert Series videos provided by Microsoft to get you prepared. Pluralsight also offers a great learning path for the Microsoft Azure Security Engineer preparation, you can check it out here.

You can also go through the following free Azure Security AZ-500 course from Microsoft to get prepared for this exam:

I also recommend the comprehensive course on Azure Cloud Security on udemy to learn how to implement security controls across the board.

Additionally, offered a great path for AZ-500 Exam preparation, and just released the AZ-500 course at a low cost, I highly recommend to check them out.

Last but not least, if you prefer an instructor led training, you can find classroom from Microsoft Learning Partners here.

If you are planning to take this exam… I wish you all the best and Happy Studying!!!

Thank you for reading my blog.

If you have any questions or feedback, please leave a comment.

-Charbel Nemnom-

About Charbel Nemnom 525 Articles
Charbel Nemnom is a Cloud Architect, ICT Security Expert and Microsoft Most Valuable Professional (MVP), totally fan of the latest's IT platform solutions, accomplished hands-on technical professional with over 17 years of broad IT Infrastructure experience serving on and guiding technical teams to optimize the performance of mission-critical enterprise systems. Excellent communicator is adept at identifying business needs and bridging the gap between functional groups and technology to foster targeted and innovative IT project development. Well respected by peers through demonstrating passion for technology and performance improvement. Extensive practical knowledge of complex systems builds, network design, business continuity, and cloud security.

Be the first to comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.