In this course, you will learn to deploy and configure Microsoft Security Copilot to deliver AI-powered security operations across Microsoft workloads. You’ll explore embedded and standalone experiences, authentication and prompting techniques, promptbooks, plugins, connectors, agents, and integration with Microsoft security solutions. Through hands-on labs, you’ll use Security Copilot to analyze alerts, investigate identity risks, gain threat intelligence, and extend its functionality with custom plugins and agents to streamline incident response, strengthen posture, and ensure compliance.
Duration - 12 Hours
Level - Intermediate
Style - Self paced
Course Type - Project Ready with Labs
Certification - No
Hands on Labs - Yes
Solution Areas - Security, Modern SecOps with Unified Platform
Gain a comprehensive introduction to Microsoft Security Copilot, covering onboarding requirements, authentication, licensing, pricing, and capacity planning. Explore standalone and embedded experiences, along with Security Copilot agents and the Microsoft Security Store to enhance security operations.
Understand the Security Copilot workspace, including effective prompting techniques and the use of promptbooks to streamline workflows. Learn about privacy, data security, and responsible AI practices to ensure safe and compliant usage.
Explore plugins and connectors to extend Security Copilot capabilities and integrate with various security tools and data sources. Discover real-world sample use cases to understand how these integrations enhance security operations and workflows.
Learn how to use Security Copilot for incident investigation, response, and automation, along with leveraging threat intelligence to strengthen security operations. Explore Security Copilot agents in Microsoft Defender and advanced threat hunting capabilities in Microsoft Sentinel for proactive defense.
Learn to use starter and suggested prompts in Security Copilot while leveraging Microsoft Entra skills for sign-in troubleshooting, risky user investigation, and application risk management. Explore lifecycle workflows and Microsoft Entra agents like Conditional Access Optimization and Access Review to enhance identity security and governance.
Learn to explore and manage data, policies, and device settings while troubleshooting issues and administering Windows 365 Cloud PCs. Leverage Microsoft Intune agents like Vulnerability Remediation, Change Review, Policy Configuration, and Device Offboarding to streamline device management and security operations.
Learn how to strengthen data security and compliance using Microsoft Security Copilot, including DSPM, DLP investigations, insider risk analysis, and alert triage. Explore eDiscovery insights, simplified compliance analysis, and how Security Copilot in Microsoft Purview empowers multiple personas across your organization.
Learn how to summarize, remediate, and delegate security recommendations efficiently using Security Copilot to streamline operations. Identify and fix Infrastructure as Code (IaC) misconfigurations to strengthen your cloud security posture.
Leverage preview plugins like Azure AI Search, Azure Firewall, and Azure Web Application Firewall in Security Copilot to gain contextual insights and analyze security data. Investigate malicious traffic and WAF logs to strengthen threat detection and response capabilities.
Use the Surface Management plugin to enhance device security posture and proactively reduce risks across your environment. Leverage the Defender EASM plugin to analyze your external attack surface and identify critical vulnerabilities for improved protection.
Learn how to automate complex security workflows using agentic experiences in Security Copilot to improve efficiency and reduce manual effort. Enable intelligent, autonomous actions that enhance decision-making and accelerate response across security operations.
.PNG?lmsauth=2f4b0be73353564a11a41d17c2842e0c061431e8)
Intermediate
(2).PNG?lmsauth=61ebe727e9890263efc362da06ca3e65c696616b)
Intermediate
.PNG?lmsauth=ea1082542d29fe1b870368da1cfad8dfd7a1cbb5)
Intermediate
.PNG?lmsauth=596d35934dd1739a4fc68c1a12346b2fdf03aeb4)
Advanced
Last Updated 26 Mar 2026