Microsoft Cybersecurity Architect (SC-100) Curriculum

Public curriculum preview for visitors and enrolled students. Use this page to evaluate module scope, outcomes, and learning path.

Download PDFBack to Course
Curriculum

Microsoft Cybersecurity Architect (SC-100)

Structured, hands-on learning path for Microsoft Cybersecurity Architect (SC-100) with detailed weekly outcomes and practical delivery.

Duration: 20 Weeks
Level: Intermediate
Study Time: 2 hours/week + labs
School: Hexadigitall Academy
20 WeeksIntermediateProject-Based

Welcome to Microsoft Cybersecurity Architect (SC-100)! 🎓

This curriculum for Microsoft Cybersecurity Architect (SC-100) follows a Bloom-aligned progression from practical foundations to measurable professional outcomes, with weekly evidence, labs, and portfolio outputs matched to intermediate expectations.

Each week advances from comprehension and application toward evaluation and creation, ensuring progressive learning and capstone readiness.

Your success is our priority. By the end, you will produce portfolio-ready artifacts and confidently explain your technical decisions. You will graduate with a professionally curated portfolio that demonstrates scope, depth, and delivery quality. You will graduate with a professionally curated portfolio that demonstrates scope, depth, and delivery quality. You will graduate with a professionally curated portfolio that demonstrates scope, depth, and delivery quality. You will graduate with a professionally curated portfolio that demonstrates scope, depth, and delivery quality.

Prerequisites

  • Hands-on experience with network protocols, operating system internals, and security control implementation
  • Practical knowledge of reading security logs, alert analysis, and threat detection workflows
  • Comfort with risk documentation, control decisions, and evidence-based compliance mapping
  • Familiarity with at least one SIEM platform, policy tool, or security scanner

Essential Resources

  • NIST Cybersecurity Framework, CIS Controls, and OWASP threat modeling guides
  • Incident simulation datasets, detection rule templates, and control efficacy checklists
  • Security architecture patterns repository and threat modeling workshop materials

Complementary Courses

Incident Response

Master triage, containment, and post-incident forensics workflows

Cloud Security

Extend identity, token, and workload protection into cloud environments

Governance & Compliance

Connect security controls to regulatory mappings and audit documentation

Learning Roadmap

  • Early Weeks: Threat modeling, attack surfaces, and core defensive controls
  • Middle Weeks: Detection engineering, response workflows, and evidence handling
  • Late Weeks: Architecture hardening, governance mapping, and capstone defense readiness

Detailed Weekly Curriculum

Each week includes outcomes and practical lab work aligned to the curriculum structure.

Week 1

Microsoft Cybersecurity Architect (SC-100): Threat Landscape and Kill Chain Analysis (Sprint 1)

2 hours + labs
Learning Outcomes
  • Understand the principles of Microsoft Cybersecurity Architect (SC-100): Domain Foundations and Problem Definition (Sprint 1) and link them to course outcomes through progressive practical delivery milestones.
  • Apply Microsoft Cybersecurity Architect (SC-100): Domain Foundations and Problem Definition (Sprint 1) in a guided scenario using realistic tools, constraints, and quality gates.
  • Analyze trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Domain Foundations and Problem Definition (Sprint 1), then record rationale for stakeholder review.
  • Document a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Domain Foundations and Problem Definition (Sprint 1) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Threat Landscape and Kill Chain Analysis (Sprint 1), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Threat Landscape and Kill Chain Analysis (Sprint 1) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Threat Landscape and Kill Chain Analysis (Sprint 1) and verify closure with re-test evidence.
Week 2

Microsoft Cybersecurity Architect (SC-100): Reconnaissance and Attack Surface Mapping (Sprint 1)

2 hours + labs
Learning Outcomes
  • Understand the principles of Microsoft Cybersecurity Architect (SC-100): Stakeholder Discovery and Requirements (Sprint 1) and link them to course outcomes through progressive practical delivery milestones.
  • Apply Microsoft Cybersecurity Architect (SC-100): Stakeholder Discovery and Requirements (Sprint 1) in a guided scenario using realistic tools, constraints, and quality gates.
  • Analyze trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Stakeholder Discovery and Requirements (Sprint 1), then record rationale for stakeholder review.
  • Document a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Stakeholder Discovery and Requirements (Sprint 1) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Reconnaissance and Attack Surface Mapping (Sprint 1), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Reconnaissance and Attack Surface Mapping (Sprint 1) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Reconnaissance and Attack Surface Mapping (Sprint 1) and verify closure with re-test evidence.
Week 3

Microsoft Cybersecurity Architect (SC-100): Vulnerability Analysis and Prioritization (Sprint 1)

2 hours + labs
Learning Outcomes
  • Understand the principles of Microsoft Cybersecurity Architect (SC-100): Process Mapping and Workflow Design (Sprint 1) and link them to course outcomes through progressive practical delivery milestones.
  • Apply Microsoft Cybersecurity Architect (SC-100): Process Mapping and Workflow Design (Sprint 1) in a guided scenario using realistic tools, constraints, and quality gates.
  • Analyze trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Process Mapping and Workflow Design (Sprint 1), then record rationale for stakeholder review.
  • Document a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Process Mapping and Workflow Design (Sprint 1) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Vulnerability Analysis and Prioritization (Sprint 1), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Vulnerability Analysis and Prioritization (Sprint 1) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Vulnerability Analysis and Prioritization (Sprint 1) and verify closure with re-test evidence.
Week 4

Microsoft Cybersecurity Architect (SC-100): Exploitation Workflows and Containment Strategy (Sprint 1)

2 hours + labs
Learning Outcomes
  • Understand the principles of Microsoft Cybersecurity Architect (SC-100): Decision Frameworks and Trade-offs (Sprint 1) and link them to course outcomes through progressive practical delivery milestones.
  • Apply Microsoft Cybersecurity Architect (SC-100): Decision Frameworks and Trade-offs (Sprint 1) in a guided scenario using realistic tools, constraints, and quality gates.
  • Analyze trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Decision Frameworks and Trade-offs (Sprint 1), then record rationale for stakeholder review.
  • Document a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Decision Frameworks and Trade-offs (Sprint 1) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Exploitation Workflows and Containment Strategy (Sprint 1), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Exploitation Workflows and Containment Strategy (Sprint 1) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Exploitation Workflows and Containment Strategy (Sprint 1) and verify closure with re-test evidence.
Week 5

Microsoft Cybersecurity Architect (SC-100): Network Defense and Segmentation Hardening (Sprint 1)

2 hours + labs
Learning Outcomes
  • Understand the principles of Microsoft Cybersecurity Architect (SC-100): Reporting and Communication Excellence (Sprint 1) and link them to course outcomes through progressive practical delivery milestones.
  • Apply Microsoft Cybersecurity Architect (SC-100): Reporting and Communication Excellence (Sprint 1) in a guided scenario using realistic tools, constraints, and quality gates.
  • Analyze trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Reporting and Communication Excellence (Sprint 1), then record rationale for stakeholder review.
  • Document a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Reporting and Communication Excellence (Sprint 1) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Network Defense and Segmentation Hardening (Sprint 1), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Network Defense and Segmentation Hardening (Sprint 1) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Network Defense and Segmentation Hardening (Sprint 1) and verify closure with re-test evidence.
Week 6

Microsoft Cybersecurity Architect (SC-100): Incident Response and Forensic Triage (Sprint 1)

2 hours + labs
Learning Outcomes
  • Understand the principles of Microsoft Cybersecurity Architect (SC-100): Risk and Governance Controls (Sprint 1) and link them to course outcomes through progressive practical delivery milestones.
  • Apply Microsoft Cybersecurity Architect (SC-100): Risk and Governance Controls (Sprint 1) in a guided scenario using realistic tools, constraints, and quality gates.
  • Analyze trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Risk and Governance Controls (Sprint 1), then record rationale for stakeholder review.
  • Document a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Risk and Governance Controls (Sprint 1) with measurable success criteria and next actions.
Lab Exercise
  • Instrument Microsoft Cybersecurity Architect (SC-100): Incident Response and Forensic Triage (Sprint 1) with metrics, logs, and tracing hooks aligned to service objectives.
  • Create actionable alerts for Microsoft Cybersecurity Architect (SC-100): Incident Response and Forensic Triage (Sprint 1) and test escalation paths using simulated incidents.
  • Perform root-cause analysis for a Microsoft Cybersecurity Architect (SC-100): Incident Response and Forensic Triage (Sprint 1) failure scenario and document corrective actions.
Week 7

Microsoft Cybersecurity Architect (SC-100): Identity Security and Privilege Controls (Sprint 1)

2 hours + labs
Learning Outcomes
  • Understand the principles of Microsoft Cybersecurity Architect (SC-100): Program Execution and Cadence (Sprint 1) and link them to course outcomes through progressive practical delivery milestones.
  • Apply Microsoft Cybersecurity Architect (SC-100): Program Execution and Cadence (Sprint 1) in a guided scenario using realistic tools, constraints, and quality gates.
  • Analyze trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Program Execution and Cadence (Sprint 1), then record rationale for stakeholder review.
  • Document a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Program Execution and Cadence (Sprint 1) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Identity Security and Privilege Controls (Sprint 1), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Identity Security and Privilege Controls (Sprint 1) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Identity Security and Privilege Controls (Sprint 1) and verify closure with re-test evidence.
Week 8

Microsoft Cybersecurity Architect (SC-100): Security Architecture and Zero Trust Review (Sprint 1)

2 hours + labs
Learning Outcomes
  • Apply the principles of Microsoft Cybersecurity Architect (SC-100): Continuous Improvement and Scale (Sprint 1) and link them to course outcomes through progressive practical delivery milestones.
  • Analyze Microsoft Cybersecurity Architect (SC-100): Continuous Improvement and Scale (Sprint 1) in a guided scenario using realistic tools, constraints, and quality gates.
  • Evaluate trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Continuous Improvement and Scale (Sprint 1), then record rationale for stakeholder review.
  • Justify a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Continuous Improvement and Scale (Sprint 1) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Security Architecture and Zero Trust Review (Sprint 1), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Security Architecture and Zero Trust Review (Sprint 1) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Security Architecture and Zero Trust Review (Sprint 1) and verify closure with re-test evidence.
Week 9

Microsoft Cybersecurity Architect (SC-100): Threat Landscape and Kill Chain Analysis (Sprint 2)

2 hours + labs
Learning Outcomes
  • Apply the principles of Microsoft Cybersecurity Architect (SC-100): Domain Foundations and Problem Definition (Sprint 2) and link them to course outcomes through progressive practical delivery milestones.
  • Analyze Microsoft Cybersecurity Architect (SC-100): Domain Foundations and Problem Definition (Sprint 2) in a guided scenario using realistic tools, constraints, and quality gates.
  • Evaluate trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Domain Foundations and Problem Definition (Sprint 2), then record rationale for stakeholder review.
  • Justify a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Domain Foundations and Problem Definition (Sprint 2) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Threat Landscape and Kill Chain Analysis (Sprint 2), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Threat Landscape and Kill Chain Analysis (Sprint 2) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Threat Landscape and Kill Chain Analysis (Sprint 2) and verify closure with re-test evidence.
Week 10

Microsoft Cybersecurity Architect (SC-100): Reconnaissance and Attack Surface Mapping (Sprint 2)

2 hours + labs
Learning Outcomes
  • Apply the principles of Microsoft Cybersecurity Architect (SC-100): Stakeholder Discovery and Requirements (Sprint 2) and link them to course outcomes through progressive practical delivery milestones.
  • Analyze Microsoft Cybersecurity Architect (SC-100): Stakeholder Discovery and Requirements (Sprint 2) in a guided scenario using realistic tools, constraints, and quality gates.
  • Evaluate trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Stakeholder Discovery and Requirements (Sprint 2), then record rationale for stakeholder review.
  • Justify a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Stakeholder Discovery and Requirements (Sprint 2) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Reconnaissance and Attack Surface Mapping (Sprint 2), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Reconnaissance and Attack Surface Mapping (Sprint 2) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Reconnaissance and Attack Surface Mapping (Sprint 2) and verify closure with re-test evidence.
Week 11

Microsoft Cybersecurity Architect (SC-100): Vulnerability Analysis and Prioritization (Sprint 2)

2 hours + labs
Learning Outcomes
  • Apply the principles of Microsoft Cybersecurity Architect (SC-100): Process Mapping and Workflow Design (Sprint 2) and link them to course outcomes through progressive practical delivery milestones.
  • Analyze Microsoft Cybersecurity Architect (SC-100): Process Mapping and Workflow Design (Sprint 2) in a guided scenario using realistic tools, constraints, and quality gates.
  • Evaluate trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Process Mapping and Workflow Design (Sprint 2), then record rationale for stakeholder review.
  • Justify a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Process Mapping and Workflow Design (Sprint 2) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Vulnerability Analysis and Prioritization (Sprint 2), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Vulnerability Analysis and Prioritization (Sprint 2) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Vulnerability Analysis and Prioritization (Sprint 2) and verify closure with re-test evidence.
Week 12

Microsoft Cybersecurity Architect (SC-100): Exploitation Workflows and Containment Strategy (Sprint 2)

2 hours + labs
Learning Outcomes
  • Apply the principles of Microsoft Cybersecurity Architect (SC-100): Decision Frameworks and Trade-offs (Sprint 2) and link them to course outcomes through progressive practical delivery milestones.
  • Analyze Microsoft Cybersecurity Architect (SC-100): Decision Frameworks and Trade-offs (Sprint 2) in a guided scenario using realistic tools, constraints, and quality gates.
  • Evaluate trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Decision Frameworks and Trade-offs (Sprint 2), then record rationale for stakeholder review.
  • Justify a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Decision Frameworks and Trade-offs (Sprint 2) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Exploitation Workflows and Containment Strategy (Sprint 2), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Exploitation Workflows and Containment Strategy (Sprint 2) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Exploitation Workflows and Containment Strategy (Sprint 2) and verify closure with re-test evidence.
Week 13

Microsoft Cybersecurity Architect (SC-100): Network Defense and Segmentation Hardening (Sprint 2)

2 hours + labs
Learning Outcomes
  • Apply the principles of Microsoft Cybersecurity Architect (SC-100): Reporting and Communication Excellence (Sprint 2) and link them to course outcomes through progressive practical delivery milestones.
  • Analyze Microsoft Cybersecurity Architect (SC-100): Reporting and Communication Excellence (Sprint 2) in a guided scenario using realistic tools, constraints, and quality gates.
  • Evaluate trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Reporting and Communication Excellence (Sprint 2), then record rationale for stakeholder review.
  • Justify a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Reporting and Communication Excellence (Sprint 2) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Network Defense and Segmentation Hardening (Sprint 2), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Network Defense and Segmentation Hardening (Sprint 2) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Network Defense and Segmentation Hardening (Sprint 2) and verify closure with re-test evidence.
Week 14

Microsoft Cybersecurity Architect (SC-100): Incident Response and Forensic Triage (Sprint 2)

2 hours + labs
Learning Outcomes
  • Analyze the principles of Microsoft Cybersecurity Architect (SC-100): Risk and Governance Controls (Sprint 2) and link them to course outcomes through progressive practical delivery milestones.
  • Evaluate Microsoft Cybersecurity Architect (SC-100): Risk and Governance Controls (Sprint 2) in a guided scenario using realistic tools, constraints, and quality gates.
  • Create trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Risk and Governance Controls (Sprint 2), then record rationale for stakeholder review.
  • Defend a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Risk and Governance Controls (Sprint 2) with measurable success criteria and next actions.
Lab Exercise
  • Instrument Microsoft Cybersecurity Architect (SC-100): Incident Response and Forensic Triage (Sprint 2) with metrics, logs, and tracing hooks aligned to service objectives.
  • Create actionable alerts for Microsoft Cybersecurity Architect (SC-100): Incident Response and Forensic Triage (Sprint 2) and test escalation paths using simulated incidents.
  • Perform root-cause analysis for a Microsoft Cybersecurity Architect (SC-100): Incident Response and Forensic Triage (Sprint 2) failure scenario and document corrective actions.
Week 15

Microsoft Cybersecurity Architect (SC-100): Identity Security and Privilege Controls (Sprint 2)

2 hours + labs
Learning Outcomes
  • Analyze the principles of Microsoft Cybersecurity Architect (SC-100): Program Execution and Cadence (Sprint 2) and link them to course outcomes through progressive practical delivery milestones.
  • Evaluate Microsoft Cybersecurity Architect (SC-100): Program Execution and Cadence (Sprint 2) in a guided scenario using realistic tools, constraints, and quality gates.
  • Create trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Program Execution and Cadence (Sprint 2), then record rationale for stakeholder review.
  • Defend a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Program Execution and Cadence (Sprint 2) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Identity Security and Privilege Controls (Sprint 2), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Identity Security and Privilege Controls (Sprint 2) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Identity Security and Privilege Controls (Sprint 2) and verify closure with re-test evidence.
Week 16

Microsoft Cybersecurity Architect (SC-100): Security Architecture and Zero Trust Review (Sprint 2)

2 hours + labs
Learning Outcomes
  • Analyze the principles of Microsoft Cybersecurity Architect (SC-100): Continuous Improvement and Scale (Sprint 2) and link them to course outcomes through progressive practical delivery milestones.
  • Evaluate Microsoft Cybersecurity Architect (SC-100): Continuous Improvement and Scale (Sprint 2) in a guided scenario using realistic tools, constraints, and quality gates.
  • Create trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Continuous Improvement and Scale (Sprint 2), then record rationale for stakeholder review.
  • Defend a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Continuous Improvement and Scale (Sprint 2) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Security Architecture and Zero Trust Review (Sprint 2), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Security Architecture and Zero Trust Review (Sprint 2) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Security Architecture and Zero Trust Review (Sprint 2) and verify closure with re-test evidence.
Week 17

Microsoft Cybersecurity Architect (SC-100): Threat Landscape and Kill Chain Analysis (Sprint 3)

2 hours + labs
Learning Outcomes
  • Analyze the principles of Microsoft Cybersecurity Architect (SC-100): Domain Foundations and Problem Definition (Sprint 3) and link them to course outcomes through progressive practical delivery milestones.
  • Evaluate Microsoft Cybersecurity Architect (SC-100): Domain Foundations and Problem Definition (Sprint 3) in a guided scenario using realistic tools, constraints, and quality gates.
  • Create trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Domain Foundations and Problem Definition (Sprint 3), then record rationale for stakeholder review.
  • Defend a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Domain Foundations and Problem Definition (Sprint 3) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Threat Landscape and Kill Chain Analysis (Sprint 3), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Threat Landscape and Kill Chain Analysis (Sprint 3) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Threat Landscape and Kill Chain Analysis (Sprint 3) and verify closure with re-test evidence.
Week 18

Microsoft Cybersecurity Architect (SC-100): Reconnaissance and Attack Surface Mapping (Sprint 3)

2 hours + labs
Learning Outcomes
  • Analyze the principles of Microsoft Cybersecurity Architect (SC-100): Stakeholder Discovery and Requirements (Sprint 3) and link them to course outcomes through progressive practical delivery milestones.
  • Evaluate Microsoft Cybersecurity Architect (SC-100): Stakeholder Discovery and Requirements (Sprint 3) in a guided scenario using realistic tools, constraints, and quality gates.
  • Create trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Stakeholder Discovery and Requirements (Sprint 3), then record rationale for stakeholder review.
  • Defend a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Stakeholder Discovery and Requirements (Sprint 3) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Reconnaissance and Attack Surface Mapping (Sprint 3), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Reconnaissance and Attack Surface Mapping (Sprint 3) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Reconnaissance and Attack Surface Mapping (Sprint 3) and verify closure with re-test evidence.
Week 19

Microsoft Cybersecurity Architect (SC-100): Vulnerability Analysis and Prioritization (Sprint 3)

2 hours + labs
Learning Outcomes
  • Analyze the principles of Microsoft Cybersecurity Architect (SC-100): Process Mapping and Workflow Design (Sprint 3) and link them to course outcomes through progressive practical delivery milestones.
  • Evaluate Microsoft Cybersecurity Architect (SC-100): Process Mapping and Workflow Design (Sprint 3) in a guided scenario using realistic tools, constraints, and quality gates.
  • Create trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Process Mapping and Workflow Design (Sprint 3), then record rationale for stakeholder review.
  • Defend a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Process Mapping and Workflow Design (Sprint 3) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Vulnerability Analysis and Prioritization (Sprint 3), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Vulnerability Analysis and Prioritization (Sprint 3) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Vulnerability Analysis and Prioritization (Sprint 3) and verify closure with re-test evidence.
Week 20

Microsoft Cybersecurity Architect (SC-100): Exploitation Workflows and Containment Strategy (Sprint 3)

2 hours + labs
Learning Outcomes
  • Analyze the principles of Microsoft Cybersecurity Architect (SC-100): Decision Frameworks and Trade-offs (Sprint 3) and link them to course outcomes through progressive practical delivery milestones.
  • Evaluate Microsoft Cybersecurity Architect (SC-100): Decision Frameworks and Trade-offs (Sprint 3) in a guided scenario using realistic tools, constraints, and quality gates.
  • Create trade-offs, risks, and decision points for Microsoft Cybersecurity Architect (SC-100): Decision Frameworks and Trade-offs (Sprint 3), then record rationale for stakeholder review.
  • Defend a portfolio-ready control validation dossier for Microsoft Cybersecurity Architect (SC-100): Decision Frameworks and Trade-offs (Sprint 3) with measurable success criteria and next actions.
Lab Exercise
  • Apply security controls for Microsoft Cybersecurity Architect (SC-100): Exploitation Workflows and Containment Strategy (Sprint 3), including access boundaries and data protection baselines.
  • Run vulnerability or control validation for Microsoft Cybersecurity Architect (SC-100): Exploitation Workflows and Containment Strategy (Sprint 3) and triage findings by severity.
  • Implement remediation steps for Microsoft Cybersecurity Architect (SC-100): Exploitation Workflows and Containment Strategy (Sprint 3) and verify closure with re-test evidence.

Capstone Projects

Project 1: Microsoft Cybersecurity Architect (SC-100) Foundation Build

Deliver a concrete foundation implementation covering the first phase of the curriculum.

  • Implement and validate Microsoft Cybersecurity Architect (SC-100): Threat Landscape and Kill Chain Analysis (Sprint 1).
  • Integrate Microsoft Cybersecurity Architect (SC-100): Reconnaissance and Attack Surface Mapping (Sprint 1) with reusable workflow standards.
  • Publish evidence for Microsoft Cybersecurity Architect (SC-100): Vulnerability Analysis and Prioritization (Sprint 1) with test and quality artifacts.

Project 2: Microsoft Cybersecurity Architect (SC-100) Integrated Systems Build

Combine mid-program competencies into a production-style integrated workflow.

  • Build an end-to-end flow around Microsoft Cybersecurity Architect (SC-100): Identity Security and Privilege Controls (Sprint 1) and Microsoft Cybersecurity Architect (SC-100): Security Architecture and Zero Trust Review (Sprint 1).
  • Add controls, observability, and rollback paths for reliability.
  • Document architecture decisions and trade-offs tied to Microsoft Cybersecurity Architect (SC-100): Threat Landscape and Kill Chain Analysis (Sprint 2).

Project 3: Microsoft Cybersecurity Architect (SC-100) Capstone Delivery

Ship a portfolio-ready capstone with measurable outcomes and stakeholder-ready presentation.

  • Deliver a complete implementation centered on Microsoft Cybersecurity Architect (SC-100): Threat Landscape and Kill Chain Analysis (Sprint 3).
  • Validate readiness for Microsoft Cybersecurity Architect (SC-100): Reconnaissance and Attack Surface Mapping (Sprint 3) using objective acceptance checks.
  • Present final defense and roadmap based on Microsoft Cybersecurity Architect (SC-100): Vulnerability Analysis and Prioritization (Sprint 3) outcomes.