Enhancing Security for Microsoft 365 and Entra ID Against Cyber Threats

The growing reliance on Microsoft 365 and Entra ID among organizations has made them prime targets for cyberattacks. To help IT professionals better secure their systems, a series of practical sessions titled M365 Security: Safeguarding Microsoft Cloud within Organizations will be offered. These sessions aim to equip cloud administrators with effective strategies to protect their environments.

Participants will learn how to configure Microsoft 365 securely using a combination of free tools, integrated features, and premium add-ons. A significant focus will be placed on utilizing the Defender product line and implementing Zero Trust principles. The objective is to understand how attackers exploit insecure default settings and misconfigurations, and how to identify and rectify these vulnerabilities.

The initial session will guide attendees in securing their cloud environments and Entra ID using Microsoft's security assessments, Security Exposure Management, and auditing tools like ScubaGear. Expert instructor Frank Ully will also demonstrate how to manage mobile devices using Intune (Mobile Device Management, MDM), covering aspects such as Mobile Application Management (MAM) with App Protection Policies, particularly focusing on iOS devices.

Subsequent sessions will delve into Microsoft Defender products. Attendees will learn to deploy Defender for Endpoint (MDE) on client devices and utilize Defender for Office (MDO) and Defender for Cloud Apps effectively. The curriculum will also cover Privileged Identity Management (PIM) and advanced security functions such as identity protection.

As the course progresses, participants will analyze security incidents through cloud logs and free tools. An introduction to Sentinel (SIEM) and Purview (Compliance) will complement the learning experience in IT forensics. The final session will provide a deep dive into Conditional Access Policies and the practical application of Zero Trust principles within the Microsoft Cloud, led by expert Tim Mittermeier.

The scheduled sessions are as follows:

• June 11, 2025: Protecting Microsoft 365 and Entra ID: Secure Configuration of Your Environment
• June 18, 2025: Setting Up Cloud-Managed Devices: Mobile Device Management (MDM) and Mobile Asset Management (MAM)
• June 25, 2025: Defender for Microsoft Cloud: Utilizing Defender for Office and Cloud Apps, Identity Management, and More
• July 2, 2025: Advanced Security in Microsoft Cloud and Forensics Using Cloud Logs from M365 and Entra ID
• July 9, 2025: Zero Trust in Practice: In-Depth Look at Conditional Access and Secure Access to Microsoft Entra

These four-hour sessions will run from 9 AM to 1 PM, offering a blend of practical application and interactive learning. Participants will have the opportunity to revisit recorded sessions and materials after the live presentations. Questions can be answered in real-time via live chat, fostering a collaborative learning environment among attendees.

Frank Ully, an expert in cybersecurity and penetration testing, will lead these sessions, supported by Tim Mittermeier, who has conducted numerous workshops and webinars on securing M365. While prior participation in related courses is not required, a background in managing M365 environments will be beneficial. Interested individuals can find more information and purchase tickets on the classroom's website.