NOTE I HAVE UPDATED THIS POST FOR 2020- Preparing for the MS-500 Microsoft 365 Security Administration Exam (February 2020 Update)

The MS-500 Microsoft 365 Security Administration exam is currently available in beta, and as you can see if you scroll down, this exam expects you to have very broad exposure across the security capabilities of the Microsoft 365 E5 suite. This guide is effectively the fifth post in this series, and if you have already taken the exams listed below you will find that some of the preparation for those exam will help out here.

There’s a huge amount of content to work through in the links below, and I’ll publish an updated version once the exam goes live in order to incorporate any changes with the final exam.

For the latest updates to exam prep guides please check

Implement and manage identity and access (30-35%)

Secure Microsoft 365 hybrid environments

Secure Identities

Implement authentication methods

Implement conditional access

Implement role-based access control (RBAC)

Implement Azure AD Privileged Identity Management (PIM)

Implement Azure AD Identity Protection

Implement and manage threat protection (20-25%)

Implement an enterprise hybrid threat protection solution

Implement device threat protection

Implement and manage device and application protection

Implement and manage Microsoft Defender for Office 365

Implement Azure Sentinel for Microsoft 365

Implement and manage information protection (15-20%)

Secure data access within Office 365

Manage sensitivity labels

Manage Data Loss Prevention (DLP)

Implement and manage Microsoft Cloud App Security

Manage governance and compliance features in Microsoft 365 (25-30%)

Configure and analyze security reporting

Manage and analyze audit logs and reports

Manage data governance and retention

Manage search and investigation

Manage data privacy regulation compliance

For the latest updates to exam prep guides please check