Courseiva
SC-200Exam Domain

Mitigate Threats Using Microsoft Sentinel (50–55%)SC-200 Study Guide

44 chapters
~1100 min total
Free — no signup required

Mitigate Threats Using Microsoft Sentinel (50–55%) Chapters

5

Microsoft Sentinel Workspace Setup

Objective 2.1 · Sentinel

25m
6

KQL for Security Analysts

Objective 2.2 · Sentinel

25m
7

Sentinel Analytics Rules

Objective 2.3 · Sentinel

25m
8

Sentinel Incident Management

Objective 2.4 · Sentinel

25m
9

Sentinel Playbooks and Automation

Objective 2.5 · Sentinel

25m
10

Threat Hunting in Sentinel

Objective 2.6 · Sentinel

25m
13

User and Entity Behaviour Analytics in Sentinel

Objective 2.2 · Sentinel

25m
14

Microsoft Sentinel Workbooks

Objective 2.1 · Sentinel

25m
15

Sentinel Watchlists

Objective 2.2 · Sentinel

25m
16

Automation Rules vs Playbooks in Sentinel

Objective 2.5 · Sentinel

25m
26

Threat Intelligence in Microsoft Sentinel

Objective 2.2 · Sentinel

25m
27

Fusion ML Detection Rules in Sentinel

Objective 2.3 · Sentinel

25m
28

Sentinel Data Connectors

Objective 2.1 · Sentinel

25m
29

Advanced KQL: Joins, Summarize, and Aggregations

Objective 2.2 · Sentinel

25m
30

KQL Time Functions and Temporal Analysis

Objective 2.2 · Sentinel

25m
31

Sentinel Entity Mapping and Investigation Graph

Objective 2.4 · Sentinel

25m
32

Sentinel Notebooks with Jupyter

Objective 2.2 · Sentinel

25m
33

Threat Intelligence Indicators in Sentinel

Objective 2.2 · Sentinel

25m
34

Mapping Sentinel Rules to MITRE ATT&CK

Objective 2.3 · Sentinel

25m
35

Scheduled Analytics Rules vs NRT Rules

Objective 2.3 · Sentinel

25m
36

Multi-Workspace Sentinel Architecture

Objective 2.1 · Sentinel

25m
37

Sentinel Workspace Design Considerations

Objective 2.1 · Sentinel

25m
38

Sentinel Health and Auditing

Objective 2.1 · Sentinel

25m
39

M365 Defender Data Connectors

Objective 2.1 · Sentinel

25m
40

Azure Activity and Entra ID Connectors

Objective 2.1 · Sentinel

25m
41

CEF and Syslog Connector Configuration

Objective 2.1 · Sentinel

25m
42

Logic Apps Playbooks for Sentinel Automation

Objective 2.5 · Sentinel

25m
43

Alert Enrichment with Automation Rules

Objective 2.5 · Sentinel

25m
44

Sentinel Cost Management and Data Retention

Objective 2.1 · Sentinel

25m
45

Custom Sentinel Data Connectors

Objective 2.1 · Sentinel

25m
71

Sentinel and Defender XDR Bi-Directional Sync

Objective 2.1 · Sentinel

25m
74

Threat Hunting Query Library

Objective 2.6 · Sentinel

25m
77

SOAR Workflows with Sentinel

Objective 2.5 · Sentinel

25m
78

Sentinel Data Export and Archiving

Objective 2.1 · Sentinel

25m
79

Sentinel Basic Logs vs Analytics Logs

Objective 2.1 · Sentinel

25m
80

Sentinel Summary Rules for Large Data

Objective 2.2 · Sentinel

25m
85

AI and ML Threat Detection in Microsoft Security

Objective 2.3 · Sentinel

25m
87

Sentinel Customer-Managed Keys (CMK)

Objective 2.1 · Sentinel

25m
88

Sentinel Private Link and Data Privacy

Objective 2.1 · Sentinel

25m
89

Sentinel Near-Real-Time (NRT) Analytics Rules

Objective 2.3 · Sentinel

25m
90

Sentinel Entity Behaviour Scoring

Objective 2.2 · Sentinel

25m
91

Sentinel Fusion ML Detection Scenarios

Objective 2.3 · Sentinel

25m
96

Sentinel Data Tiering: Hot, Cold, Archive

Objective 2.1 · Sentinel

25m
98

Sentinel Content Hub and Solutions

Objective 2.1 · Sentinel

25m
Start: Microsoft Sentinel Workspace Setup

Other SC-200 Domains

Mitigate Threats Using Microsoft Defender XDR (25–30%)

33 chapters

Mitigate Threats Using Defender for Cloud (20–25%)

24 chapters

Test your Mitigate Threats Using Microsoft Sentinel (50–55%) knowledge

Free SC-200 practice questions with full explanations. Test what you learn chapter by chapter.

SC-200 Practice Questions