MS-500 Learning Path Introduction
Learning Path Introduction

This course introduces the Microsoft 365 Security Administration learning path designed to help you pass Microsoft's MS-500 exam.


Hello, and welcome to Microsoft 365 Security Administration. The focus of this learning path is to prepare you for Microsoft’s MS-500 exam. However, even if you’re not planning on sitting the exam, this learning path will help you get started on your way to becoming a Microsoft 365 Security Engineer.

My name is Thomas Mitchell, and I’m a Microsoft 365 instructor at Cloud Academy.

The MS-500 exam will test your knowledge in several key subject areas.  You’ll be expected to know how to implement and manage identity and access, and how to implement and manage threat protection. You’ll also need to know how to implement and manage information protection, and how to manage governance and compliance features in Microsoft 365.

This learning path has been designed to align closely with the published learning objectives covered by the MS-500 exam. Therefore, we’ll teach you how to secure Microsoft 365 hybrid environments and how to secure Identities. We’ll look at how to implement different authentication methods, conditional access, and RBAC roles and role groups. We’ll then dive into identity governance and Azure AD Identity Protection.

After learning about implementing and managing identity and access, you’ll learn how to implement and manage threat protection. More specifically, you’ll learn how to implement and manage Microsoft Defender for Identity, device threat protection, and application protection. We’ll also cover Microsoft Defender for Office 365, Azure Sentinel, and Microsoft Cloud App Security.

As you progress through the learning path, you’ll also learn how to implement and manage information protection. We’ll cover things like sensitivity labels, Data Loss Prevention, data governance, and data retention.

We’ll round things out by looking at governance and compliance features in Microsoft 365. More specifically, you’ll learn how to configure and analyze security reporting, how to manage and analyze audit logs and reports, and how to discover and respond to compliance queries in Microsoft 365. You’ll also learn how to manage regulatory compliance and insider risk solutions in Microsoft 365.


Completing all courses in this learning path will allow you to learn the skills necessary to sit the MS-500 exam. As you can see, there’s quite a bit to get through! So, let’s get started!

About the Author
Learning Paths

Tom is a 25+ year veteran of the IT industry, having worked in environments as large as 40k seats and as small as 50 seats. Throughout the course of a long an interesting career, he has built an in-depth skillset that spans numerous IT disciplines. Tom has designed and architected small, large, and global IT solutions.

In addition to the Cloud Platform and Infrastructure MCSE certification, Tom also carries several other Microsoft certifications. His ability to see things from a strategic perspective allows Tom to architect solutions that closely align with business needs.

In his spare time, Tom enjoys camping, fishing, and playing poker.