MS-500 Cert

Update – check out the latest version of this preparation guide here.

I’ve recently been talking to quite a few people who need to take this exam, and while the original preparation guide posted just over a year ago is still mostly accurate, there have been some changes in the exam objectives that needed to be addressed. Below you will find the current as of time of posting exam objectives, along with resources that should help you prepare.

This exam now includes performance based testing, so make sure you aren’t just strong on theory but also know how to navigate the various portals. I still think that if you have already passed MS-100, MS-101, MD-100 and MD-101 this exam shouldn’t be too difficult if you focus on filling in the differences.

For the latest updates to exam prep guides please check

Implement and manage identity and access (30-35%)

Secure Microsoft 365 hybrid environments

Secure Identities

Implement authentication methods

Implement conditional access

Implement role-based access control (RBAC)

Implement Azure AD Privileged Identity Management (PIM)

Implement Azure AD Identity Protection

Implement and manage threat protection (20-25%)

Implement an enterprise hybrid threat protection solution

Implement device threat protection

Implement and manage device and application protection

Implement and manage Microsoft Defender for Office 365

Implement Azure Sentinel for Microsoft 365

Implement and manage information protection (15-20%)

Secure data access within Office 365

Manage sensitivity labels

Manage Data Loss Prevention (DLP)

Implement and manage Microsoft Cloud App Security

Manage governance and compliance features in Microsoft 365 (25-30%)

Configure and analyze security reporting

Manage and analyze audit logs and reports

Manage data governance and retention

Manage search and investigation

Manage data privacy regulation compliance

For the latest updates to exam prep guides please check