Understand Microsoft Online Services security development and operation

Module
9 Units

Beginner

Auditor

Privacy Manager

Risk Practitioner

Microsoft 365

Learn how Microsoft Online Services follows Microsoft’s Security Development Lifecycle (SDL) to build security and privacy into our products and services.

Learning objectives

Upon completion of this module, you should be able to:

List the phases of Microsoft’s SDL process.
Describe the training requirements for all members of Microsoft development teams.
Explain how Microsoft development teams practice security and privacy by design.
List the automated tools Microsoft uses to find and remediate software vulnerabilities.
Explain how Microsoft enforces and tests operational security requirements using ongoing penetration testing.
Describe security and privacy review requirements for code approval and release.
Explain how Microsoft uses Component Governance (CG) to manage open source software.

Prerequisites

None

Introduction to Microsoft Online Services security development and operation min
Understand Microsoft developer security training requirements min
Learn about security and privacy by design min
Explore SDL security tool automation min
Understand application penetration testing min
Learn how security and privacy reviews support secure deployment min
Explore Microsoft's safe deployment process (SDP) min
Understand open source security at Microsoft min
Summary and knowledge check min