{"course":{"productid":35312,"modality":1,"active":true,"language":"en","title":"Master Class: Microsoft Defender for Endpoint","productcode":"MDE","vendorcode":"MT","vendorname":"Master Class","fullproductcode":"MT-MDE","courseware":{"has_ekit":true,"has_printkit":false,"language":""},"url":"https:\/\/portal.flane.de\/course\/masterclass-mde","audience":"<p>SecOps team members, device administrators and all interested responsible.<\/p>","contents":"<h5>Microsoft Defender XDR<\/h5><ul>\n<li>Overview of MS Defender XDR<\/li><li>MDE overview and licensing<\/li><li>MDE vs. Microsoft Intune<\/li><li>Zero Trust and MDE<\/li><\/ul><h5>Microsoft Defender for Endpoint<\/h5><ul>\n<li>MDE architecture<\/li><li>MDE portal<\/li><li>MDE activation<\/li><li>MDE roles and permissions<\/li><\/ul><h5>Onboarding\/Offboarding<\/h5><ul>\n<li>Windows devices via local script, MS Intune and Group policies<\/li><li>MacOS devices via local script and MS Intune<\/li><li>Linux and Windows Server via Azure Arc<\/li><li>Troubleshoot onboarding issues<\/li><li>Offboard devices<\/li><\/ul><h5>Endpoint protection &ndash; Attack surface reduction<\/h5><ul>\n<li>Service to Service connection to Microsoft Intune<\/li><li>Attack surface reduction rules<\/li><li>Controlled folder access<\/li><li>Device control<\/li><\/ul><h5>Endpoint protection &ndash; Next-generation protection<\/h5><ul>\n<li>Cloud protection<\/li><li>Behavior monitoring<\/li><li>Real-time protection<\/li><li>EDR in block mode<\/li><\/ul><h5>Endpoint detection and response<\/h5><ul>\n<li>Alerts and Incidents management<\/li><li>Automated investigation and response (AIR)<\/li><li>Remediation actions<\/li><li>Device investigation<\/li><li>Device response actions<\/li><\/ul><h5>Additional configurations<\/h5><ul>\n<li>Advanced features<\/li><li>Indicators<\/li><li>Web content filtering<\/li><li>Vulnerability Management<\/li><\/ul><h5>Advanced Hunting<\/h5><ul>\n<li>KQL primer<\/li><li>Important MDE queries<\/li><\/ul><h5>Endpoint DLP (if time permits)<\/h5>","summary":"<p>Users must access and work with a lot of files and applications in their daily business. To do this, they use devices that are in turn attacked by attackers very often. To prevent the success of these attacks, administrators have to deploy many security settings and also have to monitor activities.<\/p>\n<p>Microsoft Defender for Endpoint (MDE) offers comprehensive threat protection by detecting, investigating, and responding to threats in real-time, making it a crucial tool for any organization. Its seamless integration with the Microsoft ecosystem ensures a unified security experience. The platform&rsquo;s robust Endpoint Detection and Response (EDR) capabilities provide detailed insights into sophisticated threats, while automated investigation and remediation reduce the workload on security teams.<\/p>\n<p>Learn in this course how to activate MDE, onboard devices, reduce attack surface, enable next-generation protection, control automated investigation and monitor all security related aspects of devices.<\/p>","audience_plain":"SecOps team members, device administrators and all interested responsible.","contents_plain":"Microsoft Defender XDR\n\n\n- Overview of MS Defender XDR\n- MDE overview and licensing\n- MDE vs. Microsoft Intune\n- Zero Trust and MDE\nMicrosoft Defender for Endpoint\n\n\n- MDE architecture\n- MDE portal\n- MDE activation\n- MDE roles and permissions\nOnboarding\/Offboarding\n\n\n- Windows devices via local script, MS Intune and Group policies\n- MacOS devices via local script and MS Intune\n- Linux and Windows Server via Azure Arc\n- Troubleshoot onboarding issues\n- Offboard devices\nEndpoint protection \u2013 Attack surface reduction\n\n\n- Service to Service connection to Microsoft Intune\n- Attack surface reduction rules\n- Controlled folder access\n- Device control\nEndpoint protection \u2013 Next-generation protection\n\n\n- Cloud protection\n- Behavior monitoring\n- Real-time protection\n- EDR in block mode\nEndpoint detection and response\n\n\n- Alerts and Incidents management\n- Automated investigation and response (AIR)\n- Remediation actions\n- Device investigation\n- Device response actions\nAdditional configurations\n\n\n- Advanced features\n- Indicators\n- Web content filtering\n- Vulnerability Management\nAdvanced Hunting\n\n\n- KQL primer\n- Important MDE queries\nEndpoint DLP (if time permits)","summary_plain":"Users must access and work with a lot of files and applications in their daily business. To do this, they use devices that are in turn attacked by attackers very often. To prevent the success of these attacks, administrators have to deploy many security settings and also have to monitor activities.\n\nMicrosoft Defender for Endpoint (MDE) offers comprehensive threat protection by detecting, investigating, and responding to threats in real-time, making it a crucial tool for any organization. Its seamless integration with the Microsoft ecosystem ensures a unified security experience. The platform\u2019s robust Endpoint Detection and Response (EDR) capabilities provide detailed insights into sophisticated threats, while automated investigation and remediation reduce the workload on security teams.\n\nLearn in this course how to activate MDE, onboard devices, reduce attack surface, enable next-generation protection, control automated investigation and monitor all security related aspects of devices.","skill_level":"Intermediate","version":"1.0","duration":{"unit":"d","value":4,"formatted":"4 days"},"pricelist":{"List Price":{"DE":{"country":"DE","currency":"EUR","taxrate":19,"price":3995},"AT":{"country":"AT","currency":"EUR","taxrate":20,"price":3995},"SE":{"country":"SE","currency":"EUR","taxrate":25,"price":3995},"GB":{"country":"GB","currency":"GBP","taxrate":20,"price":3325},"SI":{"country":"SI","currency":"EUR","taxrate":20,"price":3995},"CH":{"country":"CH","currency":"CHF","taxrate":8.1,"price":3995}}},"lastchanged":"2026-03-18T11:01:01+01:00","parenturl":"https:\/\/portal.flane.de\/sap_esi\/en\/json-courses","nexturl_course_schedule":"https:\/\/portal.flane.de\/sap_esi\/en\/json-course-schedule\/35312","source_lang":"en","source":"https:\/\/portal.flane.de\/sap_esi\/en\/json-course\/masterclass-mde"}}