The exam description for MS-101 was updated recently to include Microsoft Defender for Cloud Apps naming. without any other changes, While there isn’t much to discuss in terms of exam changes, it is worth discussing how this security focused exams compares to some of the more recent additions in the security exam family

The first thing to note here is that this exam is a mobility and security exam, so it’s going to include more detailed questions on Intune/MEM and Windows that the new exams don’t focus on. However, once you move past this difference, there are many topics that overlap with the SC-x00 series exams, but that doesn’t mean that preparing for this exam will completely prepare you for those exams. If you have passed MS-100 and MS-101 you are going to be in pretty good shape to prepare for the the SC-300 identity exam. If governance and compliance are what you are more passionate about, it would make sense to look at SC-400 as your next exam, as the base knowledge in this exam puts you in a good starting position as far as knowledge is concerned.

Some of those exams do have an Azure component, or in the case of the SC-200 Security Operations exam have a very heavy Azure focus due to Microsoft Defender for Cloud and Microsoft Sentinel making up a large portion of the exam. There is similar overlap with this exam and MS-500, so it could be a good exam to take after this one if you were planning out what’s next.

Implement Modern Device Services (40-45%)

Plan device management

Manage device compliance

Plan for apps

Plan Windows 10 deployment

Enroll devices

Implement Microsoft 365 Security and Threat Management (20-25%)

Manage security reports and alerts

Plan and implement threat protection with Microsoft 365 Defender

Plan Microsoft Defender for Cloud Apps

Manage Microsoft 365 Governance and Compliance (35-40%)

Plan for compliance requirements

Manage information governance

Implement Information protection

Plan and implement data loss prevention (DLP)

Manage search and investigation