The AZ-500 in-company training teaches your security engineers and IT professionals how to implement security controls, maintain your organisation's security posture and identify and remediate security vulnerabilities in Microsoft Azure. The training covers the four core areas of Azure security: identity and access, platform protection, data and application security, and security operations. The official Microsoft course lasts 4 days and prepares for the Microsoft Certified: Azure Security Engineer Associate certification.
Please note: AZ-500 will retire on 31 August 2026. The successor exam is SC-5006 (Implement security for Azure Cloud Workloads). OEM recommends completing the training and exam before that date.
The AZ-500 in-company training is intended for Azure security engineers planning to take the associated certification exam or performing security tasks in their daily work. The training is also suitable for engineers who want to specialise in securing Azure-based digital platforms. Required prior knowledge: AZ-104 or equivalent Azure administrator experience. Knowledge of security best practices, Zero Trust, role-based access control and multi-factor authentication is recommended. Minimum 4 and maximum 12 participants per group.
Day 1: Identity and Access Security
Securing Microsoft Entra ID: managing users, groups and external identities. Configuring multi-factor authentication and conditional access. Implementing Azure AD Identity Protection and access reviews. Implementing Privileged Identity Management (PIM) for Azure AD roles and Azure resources. Enterprise governance with RBAC, Azure policies and resource locks. Securing hybrid identities with Microsoft Entra Connect.
Day 2: Platform Protection
Implementing perimeter security with Azure Firewall and Azure DDoS Protection. Configuring network security with Network Security Groups (NSG) and Application Security Groups (ASG). Implementing host security: endpoint protection via Microsoft Defender for Endpoint, remote access management, update management and BitLocker disk encryption. Implementing container security for Azure Container Instances, Azure Container Registry and Azure Kubernetes Service (AKS). Configuring private endpoints and service endpoints for secure access to Azure services.
Day 3: Data and Application Security
Implementing Azure Key Vault for certificates, keys and secrets. Configuring application security: app registrations in Microsoft Entra ID, managed identities and Microsoft Entra Application Proxy. Implementing storage security: shared access signatures (SAS), blob retention policies and Azure Files authentication. Implementing SQL Database security: audit logging, data masking, transparent data encryption and Advanced Threat Protection. Configuring encryption of data in transit and at rest.
Day 4: Security Operations
Implementing Microsoft Defender for Cloud: managing security posture, monitoring regulatory compliance and following up recommendations. Implementing Microsoft Sentinel: configuring data connectors, creating analytics rules and managing incidents. Integrating threat intelligence and implementing automated responses with Logic Apps. Analysing security reports and remediating vulnerabilities. Preparation for the official AZ-500 certification exam.
The training is delivered in sessions of 3 hours: morning, afternoon or evening. A full training day consists of two sessions of 3 hours each. The AZ-500 training lasts 4 full training days (8 sessions). Do you have more than 12 participants? We will schedule two groups of a maximum of 12 participants each on the same day. The trainer comes to your location or delivers the training at our training facility in Almere with free parking.
After the training your employees are fully prepared for the official AZ-500 Microsoft Certified: Azure Security Engineer Associate exam. OEM offers the associated certification exam as an official Pearson VUE exam centre. The exam can be taken on location in Almere or online via remote proctoring. Please note: this exam retires on 31 August 2026.
As a Dutch SME, you may be eligible for the SLIM subsidy for ICT training. The Dutch government reimburses 60% of your training costs, up to a maximum of €24,999. The second 2026 period opens on 10 August.
Request a quote via our quote form or contact us via our contact page. Or ask Sanne, our AI assistant - available 24/7 via the blue icon at the bottom right of the page.