Skip to content
Rana Usman Ahmad
All trainings
Prepares you for SC-200

Defender XDR Practical

Operate Microsoft Defender XDR as one investigation surface.

Book this training
Duration
14 hours
Labs
7
Split
65% hands-on / 35% theory
Delivery
Live on Teams
01

What is covered

  • Defender for Endpoint, Identity, and Office 365
  • Unified incidents and investigation
  • Attack surface reduction and tuning
  • Automation and response playbooks
02

What you leave with

  • Investigate incidents across the Defender suite
  • Tune policies to cut noise
  • Build practical response workflows
03

Reference architecture

We work through the reference architecture for this stack during the training.

  • EndpointsDefender for Endpoint
  • IdentitiesDefender for Identity
  • Email and collabDefender for Office 365
  • Cloud appsDefender for Cloud Apps
Defender XDRCorrelates signals into incidents
Conceptual architecture for this training using the Microsoft stack. Original diagram; product names are trademarks of Microsoft Corporation.
03

Book this training

Booking starts a conversation. Send your details and preferred dates and I will reply with availability. Fees are handled by email reply.

Your request reaches me directly, and I reply personally to arrange dates and fees.