Passed AZ-500 Exam: Microsoft Certified Azure Security Engineer

11 Min. Read

Updated – 09/02/2021 – The AZ-500 exam guide below shows the changes that will be implemented starting on January 27, 2021. This article has been updated to reflect the new exam objectives added by Microsoft and new study references to help you prepare successfully. Please check the following section where you can download the appendix that covers the new additions per skill measure.


Microsoft is keeping evolving its learning programs to help you and your career keep pace with today’s demanding IT environments. At Ignite in September 2018, Microsoft announced new role-based certifications to help you and your career keep pace with today’s business requirements. They are evolving their learning program to better offer what you need to skill up, prove your expertise to employers and peers, and get the recognition—and opportunities—you’ve earned. Check the following document to have a complete overview of the new Microsoft certification program published on September 24, 2018. Microsoft is planning to announce more role-based certifications in 2019.

After passing the Microsoft Azure Solutions Expert exam, as well as the Azure Developer Associate exam, the Microsoft Azure Administrator certification, and the Microsoft Azure Fundamentals exam. I decided to sit for the Microsoft Azure Security Engineer exam.

I am so happy and grateful now that I passed the AZ-500 Microsoft Certified: Azure Security Engineer Associate. I figured that I would share my experience in this post to help you prepare and tackle this exam successfully.

In this exam, I got around 41 questions in total with 1 case study, and the total time for this exam is 180 minutes. The questions do pretty much match the list of skills measured below.

Exam Profile Audience

The Azure Security Engineer implements security controls, maintains the security posture, and finds and remediates vulnerabilities by using a variety of security tools. Responsibilities include helping protect data, applications, and networks; managing identity and access; implementing threat protection, and responding to security incident escalations. The Azure Security Engineer often serves as part of a larger team dedicated to cloud-based management and security. The Azure Security Engineer might also help secure hybrid environments as part of an end-to-end infrastructure.

Candidates for this exam should have strong skills in scripting and automation; a deep understanding of networking, virtualization, and cloud n-tier architecture; and a strong familiarity with cloud capabilities in general and Microsoft Azure products and services in particular. The Azure Security Engineer should also be familiar with other Microsoft products and services.

Please note that the Azure Security Engineer role does NOT focus on helping secure Microsoft 365 and remains separate from the M365 Security and Compliance Administrator role.

Prerequisites study guide

If you are new to the Azure Security Engine role, please check the following references that will help you to understand security fundamentals:

> Introduction to Azure security

> Azure security technical capabilities

> Azure identity management security overview

> Azure network security overview

> Fundamentals of Network Security

> Microsoft Azure Well-Architected Framework Security

Skills measured on this exam

This exam measures your ability to accomplish the technical topics listed below based on the latest update from Microsoft. Please note that most questions cover features that are General Availability (GA). However, the exam may contain questions on Preview features if those features are commonly used by users.

Links to relevant reading from the official Microsoft documentation for each skill tested are listed below to help you prepare:

Manage Identity and Access (30-35%)

Manage Azure Active Directory Identities

Configure secure access by using Azure AD

Manage application access

Manage access control

Implement Platform Protection (15-20%)

Implement advanced network security

Configure advanced security for compute

Manage Security Operations (25-30%)

Monitor security by using Azure Monitor

Monitor security by using Azure Security Center

Monitor security by using Azure Sentinel

Configure security policies

Secure Data and Applications (20-25%)

Configure security for storage

Configure security for databases

Configure and manage Key Vault

Lessons Learned and Exam Preparation

Practice, practice, and read… I cannot stress enough that hands-on experience and understanding all the security concepts will help you to pass this exam. The key success to pass this exam is to work with Microsoft Azure daily, especially cloud governance and security.

Based on my experience to get the most from this preparation you need the following trial subscriptions or equivalent access:

> An Azure subscription – you can create your free Azure account today and start practicing the latest and greatest security features.

> An EMS E5.

> Azure Security Center with Azure Defender enabled (free for 30 days).

> Azure Sentinel.

I usually use Microsoft Azure Security Documentation which is a great resource to dive deep into each topic, and I use Microsoft Learn the new learning approach which is more structured to learn all the topics required for the exam. I highly recommend going through the free learning modules below on Microsoft Learn to prepare for the AZ-500 exam:

You can watch the free Azure Security Expert Series videos provided by Microsoft to get you prepared. Pluralsight also offers a great learning path for the Microsoft Azure Security Engineer preparation, you can check it out here.

You can also go through the following free Azure Security AZ-500 course from Microsoft to get prepared for this exam:

If you have access to a LinkedIn Learning platform, then I highly recommend going through the following fast preparation path in just 6 hours:

I also recommend the comprehensive course on Azure Cloud Security on udemy to learn how to implement security controls across the board.

Additionally, offered a great path for AZ-500 Exam preparation, and just released the AZ-500 course at a low cost, I highly recommend checking them out.


As of December 10, 2020, Microsoft released the Exam Reference AZ-500 Book – Microsoft Azure Security Technologies which you can place the order today here. I highly recommend this book to prepare and pass this exam.

Exam Reference AZ-500 Book - Microsoft Azure Security Technologies

Appendix January 2021 Exam Update

On January 27, 2021, Microsoft updated the AZ-500 Exam objectives to add new topics to the existing areas of the exam. This appendix covers the new additions per skill measure section. You can download the appendix from here to help you prepare for the latest exam questions.

Instructor-led virtual training

Last but certainly not least, if you prefer an instructor-led training course, Microsoft released the AZ-500T00-A (4 days) course. This course provides IT Security Professionals with the knowledge and skills needed to implement security controls, maintain an organization’s security posture, and identify and remediate security vulnerabilities. This course includes security for identity and access, platform protection, data and applications, and security operations. If you prefer to prepare for this exam with Microsoft MCT instructor-led virtual training, you can contact me here.


Bypassing the AZ-500 Microsoft Azure Security Technologies, you will earn the Microsoft Azure Security Engineer Associate certificate.

Passed AZ-500 Exam: Microsoft Certified Azure Security Engineer 1

If you are planning to take this exam… I wish you all the best and Happy Studying!!!

Thank you for reading my blog.

If you have any questions or feedback, please leave a comment.

-Charbel Nemnom-

Related Posts


How To Reset Network Adapter Advanced Properties With PowerShell

How To Copy Files From One Azure Storage Account To Another


Let me know what you think, or ask a question...

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Subscribe to Stay in Touch

Never miss out on your favorite posts and our latest announcements!

The content of this website is copyrighted from being plagiarized!

You can copy from the 'Code Blocks' in 'Black' by selecting the Code.

Please send your feedback to the author using this form for any 'Code' you like.

Thank you for visiting!