Passed the Microsoft Security, Compliance, and Identity Fundamentals exam (SC-900) 🔐
This might be the hardest fundamentals exam I've taken.
Four domains. Security concepts, Microsoft Entra, security solutions, compliance solutions. That sounds manageable until you open the study guide.
Zero Trust architecture. Entra ID with Conditional Access and Privileged Identity Management. Microsoft Defender XDR is not one product, but an entire family working as an integrated threat protection stack.
Microsoft Sentinel for SIEM and SOAR. Microsoft Purview covering everything from DLP to eDiscovery to insider risk management.
The security solutions domain alone accounts for 35–40% of the exam. This isn't a fundamentals exam. It's Microsoft's entire security ecosystem compressed into one test.
Why I took this:
At Sogo & Seibu, IAM infrastructure and security architecture are core to what we're building. Our environment runs on both AWS and Azure. I already understand cloud security from the AWS side but Microsoft's stack has its own language. Entra ID vs IAM Identity Center. Purview vs Macie. Sentinel vs SecurityHub. Knowing the concepts isn't the same as knowing the platform.
Still learning. Still building.
#Microsoft #SC900 #Security #CloudSecurity #SoftwareEngineer #Azure #Japan
Enjoyed this post? Get in Touch — I'd love to hear your thoughts.