The AZ-500 exam has just been updated, mostly with the addition of Azure Defender related items, as well as Azure Firewall Manager. If you had previously been working with Azure Security Center you may already be familiar with the functionality provided by Azure Defender for Storage, Azure Defender for SQL and Azure Defender for Key Vault, as they previously fell under the Azure Security Center Standard umbrella. It’s good to see the announcements made late last year at Ignite hitting the exam, but without the exam objectives being overhauled too much.

Manage identity and access (30-35%)

Manage Azure Active Directory identities 

Configure secure access by using Azure AD

Manage application access

Manage access control

Implement platform protection (15-20%)

Implement advanced network security

Configure advanced security for compute

Manage security operations (25-30%)

Monitor security by using Azure Monitor

Monitor security by using Azure Security Center

Monitor security by using Azure Sentinel

Configure security policies

Secure data and applications (20-25%)

Configure security for storage

Configure security for databases

Configure and manage Key Vault