Unit 1: Manage Identity and Access • Explain the concept of Azure Active Directory (Azure AD) and its role in managing identities and access in Microsoft Azure. Describe the key features and benefits of Azure AD for organizations.  • Compare and contrast Azure AD B2B (Business-to-Business) and Azure AD B2C (Business-to-Customer) scenarios. Provide examples of when each scenario would be appropriate for different identity and access management needs.  • What are Managed Identities in Azure, and how do they enhance the security posture of applications? Discuss the differences between system-assigned and user-assigned Managed Identities.  • Define Conditional Access policies in Azure AD and discuss their significance in enforcing access controls based on specific conditions. Provide real-world examples of scenarios where Conditional Access policies can be implemented effectively.

Unit 2: Implement Platform Protection • Describe the role of Azure Security Center in safeguarding Azure resources and workloads. Explain how Security Center provides visibility, threat detection, and recommendations for enhancing security. • Discuss the importance of Network Security Groups (NSGs) in Azure and their role in controlling network traffic. Explain how NSGs can be used to enforce security rules at the subnet and network interface level. • What are Just-In-Time (JIT) access and Network Security Group (NSG) Flow Logs in Azure? Explain how JIT access enhances security by restricting inbound access to virtual machines, and how NSG Flow Logs can be used for monitoring network traffic. • Define Azure Key Vault and its significance in secure management of cryptographic keys, secrets, and certificates. Describe the key features of Azure Key Vault that ensure data protection and compliance.