Next cohort starts 1st of next month · only 3 seats left
contact@DevOpsSchool.com · +91 99057 40781 ·
HomeCertificationsSC-100
SC-100 · DevOpsSchool Certification

Microsoft Certified: Cybersecurity Architect Expert (SC-100)

Design end-to-end Zero Trust security architectures for Microsoft cloud — identity, data, compliance, and threat protection. Every session is a live demo in a real lab environment — not slides, not theory. You watch the instructor build it, then you build it yourself.

 4.8 / 5 · 2,300+ ratings 18,000+ certified learners 312 enrolled in last 90 days
Duration
5 weeks
Total content
100+ hours
Per tool
5 hrs · 2 assignments · 1 capstone
Final exam
3 hrs · online · open-book
Enrol now — ₹34,999 Watch 2-min preview Download syllabus
NEXT COHORT · 1st of next month
₹34,999 ₹49,999 SAVE 30%
Live & interactive cohort · GST extra as applicable · EMI available
--
Days
--
Hrs
--
Min
--
Sec
Only 3 of 10 seats left
What's included
  • 5-week program · 100+ hours of content
  • Live & interactive instructor sessions
  • 2 assignments & 1 capstone per tool
  • 3-hour online open-book final exam
  • Recordings, slides & lab repos
  • Industry-recognised digital certificate
  • Lifetime forum support — ask anything, forever
  • FREE 1-year LMS access — entire DevOpsSchool LMS: 20+ courses, 50+ tools, videos, quizzes, assignments & projects.
Cohort-cancellation refund. If we cancel or postpone the cohort (instructor unavailability, low enrolment, force majeure), you receive a 100% refund within 15 days. See refund policy.
Reserve my seat — ₹34,999
Engineers we've trained work at
JPMorgan Chase Bank of America Wells Fargo Verizon Nokia World Bank GE Healthcare VMware Oracle Qualcomm Mercedes-Benz Airbus Datadog Splunk Deloitte Infosys Wipro Capgemini
# career outcomes

Walk in an engineer. Walk out a SC-100 who ships.

By the end of SC-100, you'll have shipped 14 production-grade artefacts and proven you can:

Design CI/CD for multi-service applications, with branching, gates, and progressive rollout.

Provision infrastructure as code across AWS, Azure, or GCP using Terraform — including drift control.

Automate configuration at scale with Ansible — idempotent playbooks, secret-free roles.

Run containers on Kubernetes — workloads, networking, autoscaling, observability.

Shift security left — SAST/DAST, SBOM, signed images, policy as code with OPA.

Operate SLOs — define error budgets, run incident response, write postmortems.

Median salary after certification
$118K – $165K
Roles our SC-100 alumni land: DevOps Engineer · Platform Engineer · SRE · Build & Release Manager · Cloud Automation Lead. Based on alumni reporting, 2024–25.
Start now — ₹34,999
# why this program

It's training built by people who run production for a living.

Taught by senior practitioners

Every instructor has 15+ years operating production systems — our lead instructor, Rajesh Kumar, has 20.

Build your own lab — not a sandbox

We teach you to provision a production-grade environment on your own AWS/Azure/GCP. It's the same skill you'll use day one on the job — and it goes with you when you leave.

100% demo-driven

Every session is a live demonstration in a working lab — never slides, never theory. You watch the instructor build it in real time, then you build it yourself.

Job-ready portfolio

You leave with 14 GitHub-ready projects you can show in interviews tomorrow.

# next cohort

Live cohorts — pick the track that fits your week.

Every cohort is capped at 10 learners by design. That's how the instructor still answers your real production questions in week 4 — not just the rehearsed ones from week 1.

Weekend cohort Most popular

Starts 1st of next month · Sat · Sun · 10:00 AM – 1:00 PM IST
  • 5 weekends · ~8 hrs/weekend live + self-paced
  • Designed for working professionals on IST/EST/GMT
  • Mentor office hours · Sunday 11 AM IST
  • Only 3 of 10 seats left
Reserve seat — ₹34,999

Weekday cohort

Starts 1st of next month · Mon · Wed · Fri · 8:00 – 10:00 PM IST
  • 5 weeks · ~12 hrs/week (live + self-paced)
  • Recorded same-day · always-available replay
  • Mentor office hours · Thursday 7 PM IST
  • Capped at 10 learners — small-batch by design
Reserve seat — ₹34,999

Need a custom corporate cohort for your team? Talk to us →

# curriculum · SC-100

Tool-by-tool. Live demos, not slides.

Each tool is taught as a working live demonstration inside a real lab environment — you see it built end-to-end before you build it yourself. The structure is identical for every tool, so you always know what's coming and what you'll have shipped by the end of the week.

5 hours
content per tool
(live + self-paced video)
2 assignments
per tool
graded with feedback
1 capstone
per tool
GitHub-public portfolio
3-hr exam
online · open-book
at the end of the program
01 Zero Trust Strategy & Architecture8 hrs · 2 assignments · 1 capstone
Zero Trust principles (verify explicitly, use least privilege, assume breach), Zero Trust deployment on Microsoft cloud, MCRA (Microsoft Cybersecurity Reference Architecture), CAF Security methodology, threat landscape analysis, security strategy documentation.
Capstone: design and document a Zero Trust security strategy for an enterprise migrating to Azure, aligned with MCRA.
02 Identity & Access Architecture8 hrs · 2 assignments · 1 capstone
Identity as control plane, Entra ID at scale (PIM, Conditional Access, Identity Governance), external identity security (B2B, B2C, federation), privileged access strategy (Privileged Access Workstation, emergency access accounts), Active Directory security hardening.
Capstone: architect an enterprise identity security program — PIM tiers, Conditional Access policy set, Identity Governance access packages.
03 Security Operations Architecture8 hrs · 2 assignments · 1 capstone
Modern SOC design (SIEM + SOAR), Microsoft Sentinel architecture (workspace design, data collection at scale, multi-tenant/multi-workspace), Microsoft Defender XDR (unified investigation, extended detection), UEBA, threat intelligence (TAXII/STIX), IR process design.
Capstone: design a multi-tenant Sentinel architecture with unified XDR integration, automation playbooks, and IR runbooks.
04 Infrastructure Security Architecture7 hrs · 2 assignments · 1 capstone
Secure infrastructure landing zones, server security baseline (Defender for Servers, Defender for Endpoint), container security architecture (Defender for Containers, AKS hardening, supply chain), IoT security (Defender for IoT), hybrid & multi-cloud security (Azure Arc + Defender).
Capstone: design a secure landing zone with Defender for Servers, container security pipeline, and Arc-enabled hybrid coverage.
05 Data & Application Security Architecture8 hrs · 2 assignments · 1 capstone
Data security architecture (Microsoft Purview, information protection labels, DLP policies, data residency), application security (secure SDLC, DevSecOps with Defender for DevOps, GitHub Advanced Security), API security (APIM), SaaS/PaaS security patterns.
Capstone: design a data security architecture with Purview sensitivity labels, DLP, and a DevSecOps pipeline with Defender for DevOps.
06 Network Security Architecture7 hrs · 2 assignments · 1 capstone
Network segmentation strategy, Azure Firewall Premium (IDPS, TLS inspection), Azure Virtual WAN security (secured hub), Private Link at enterprise scale, network access control (Zero Trust network access vs VPN), SD-WAN + Azure integration.
Capstone: design a Zero Trust network architecture with Virtual WAN secured hub, Firewall Premium IDPS, and private access for all workloads.
07 Compliance & Regulatory Architecture7 hrs · 2 assignments · 1 capstone
Compliance architecture design (GDPR, NIST CSF, ISO 27001, SOC 2), Microsoft Purview Compliance Manager, Azure Policy compliance initiatives, Microsoft Priva, data sovereignty & residency requirements, compliance automation & evidence collection.
Capstone: map a fictitious organisation's compliance requirements to Purview Compliance Manager and design automated evidence collection.
08 Endpoint Security Architecture7 hrs · 2 assignments · 1 capstone
Microsoft Defender for Endpoint (architecture, attack surface reduction, EDR), Microsoft Intune (MDM/MAM, compliance policies, conditional access), Privileged Access Workstations (PAW), Windows Hello for Business, endpoint detection & response design.
Capstone: design an endpoint security architecture with MDE, Intune compliance policies, and PAW for administrators.
09 Cloud Security Posture Management7 hrs · 2 assignments · 1 capstone
CSPM vs CWPP distinction, Defender for Cloud CSPM (attack path analysis, cloud security graph, agentless scanning), Microsoft Security Exposure Management, multi-cloud CSPM (AWS/GCP via Defender), Benchmark alignment (Azure Security Benchmark, CIS Controls).
Capstone: implement multi-cloud CSPM across Azure + AWS, analyse attack paths, and design a remediation priority framework.
10 Microsoft Security Copilot & AI Security6 hrs · 2 assignments · 1 capstone
Microsoft Security Copilot (standalone vs embedded experiences), AI security risks (prompt injection, model poisoning, data leakage), securing AI workloads on Azure (Azure OpenAI safety, content filtering), Responsible AI principles, AI Red Teaming.
Capstone: design a security framework for an enterprise AI deployment on Azure OpenAI, covering access controls, content filtering, and AI Red Team exercise.
11 Security Architecture Reviews & Design Patterns7 hrs · 2 assignments · 1 capstone
Security Architecture Review process (threat modelling — STRIDE, PASTA), Well-Architected Security Review, security design pattern library (secure-by-default, defence-in-depth, least privilege), architecture decision records (ADR) for security, communicating risk to business stakeholders.
Capstone: conduct a security architecture review for a cloud migration project, produce a threat model, and document ADRs for security decisions.
12 Secure Remote Work & SaaS Security5 hrs · 2 assignments · 1 capstone
Microsoft 365 security architecture, Defender for Office 365, Microsoft Entra Internet Access (SSE/ZTNA), Microsoft Defender for Cloud Apps (CASB — shadow IT, session controls, DLP), Teams and SharePoint security governance.
Capstone: design a Zero Trust remote access architecture with Entra Internet Access, Defender for Cloud Apps CASB policies, and M365 DLP.
13 Multi-Cloud Security Architecture VIDEO6 hrs · self-paced
Multi-cloud security strategy (Azure + AWS + GCP), unified CSPM with Defender for Cloud multi-cloud connectors, cross-cloud identity federation, centralised Sentinel for multi-cloud threat detection.
Self-paced video module.
14 SC-100 Exam Preparation VIDEO5 hrs · self-paced
Expert-level scenario methodology for SC-100, case study analysis technique, security architecture decision frameworks, full mock exam walkthrough and debrief.
Self-paced video module.
Final certification exam2 hrs · 40-60 questions · scenario-based
Official Microsoft SC-100 exam: 40-60 scenario-based questions covering Zero Trust strategy, identity, security operations, infrastructure, data, application, network, and compliance security architecture. Prerequisites: AZ-500 or SC-200 recommended. Passing score ~700/1000.
Want the full module breakdown?

Get the PDF syllabus with every tool, sub-topic, assignment brief, capstone spec and reading list.

Download syllabus
# your capstone portfolio

One capstone per module. 14 GitHub-public artefacts demonstrating expert-level cybersecurity architecture.

Every module ends in a graded capstone project. By the end you'll have a portfolio of enterprise security architecture designs — Zero Trust frameworks, SOC designs, and compliance automation. Sample capstones below.

CAPSTONE · ZERO TRUST
Enterprise Zero Trust strategy document

Zero Trust architecture design aligned with MCRA, covering identity, devices, network, apps, and data.

MCRAEntra IDAzure Policy
CAPSTONE · SOC
Multi-tenant Sentinel SOC architecture

Sentinel workspace design, 5+ connectors, analytics rules, XDR integration, automated playbooks.

SentinelDefender XDRLogic Apps
CAPSTONE · CSPM
Multi-cloud CSPM with attack path analysis

Defender for Cloud across Azure + AWS, attack path analysis, remediation priority framework.

Defender for CloudAWS ConnectorSecurity Graph
CAPSTONE · DATA
Purview DLP + GDPR compliance architecture

Sensitivity labels, DLP policies, Compliance Manager GDPR assessment, automated evidence collection.

PurviewCompliance ManagerDLP
CAPSTONE · THREAT MODEL
Security architecture review with STRIDE

STRIDE threat model for a cloud-native migration project, security ADRs, risk documentation.

STRIDEWell-ArchitectedMCRA
CAPSTONE · AI SECURITY
Azure OpenAI security framework

Azure OpenAI access controls, content filtering, prompt injection mitigations, AI Red Team exercise.

Azure OpenAIDefender for AIResponsible AI
# tools you'll master

30+ Microsoft security tools mastered across Zero Trust, CSPM, SOC, compliance, and AI security domains.

Microsoft Entra ID
Entra PIM / Governance
Microsoft Sentinel
Defender XDR
Defender for Cloud (CSPM)
Defender for Endpoint
Defender for Containers
Defender for SQL/Storage
Defender for Cloud Apps
Microsoft Purview
Compliance Manager
Azure Firewall Premium
Entra Internet Access
Azure Key Vault
Microsoft Security Copilot
GitHub Advanced Security
Azure Arc (multi-cloud)
KQL / Log Analytics
Logic Apps (SOAR)
Azure OpenAI Security
# the final exam

3 hours. Online. Open-book. Built to test what you can ship.

The SC-100 examination is intentionally not a memorisation contest. Open-book, scenario-driven, and proctored online — it tests whether you can solve real production problems with the toolchain you spent five weeks practising.

3 hours
total duration
Online
from anywhere
Open-book
notes, docs, the LMS
Scenario-based
real engineering tasks
What it covers
  • Multi-part production scenarios that span the toolchain end-to-end
  • Pipeline design, IaC, configuration, containers, K8s, observability, security
  • Debugging exercises — given symptoms and logs, find the root cause
  • Written reasoning on trade-offs (e.g. blue/green vs canary, push vs pull GitOps)
Why open-book

In a real on-call shift you look things up. The exam mirrors that. We test the skill that actually matters — composing what you know into a working solution under time pressure. Memorising flag syntax wouldn't make you a better engineer.

Pass → certified.

Clear the exam and you'll be issued the SC-100 digital certificate within 5 working days, with a verifiable credential ID on our public registry.

  • Two free re-attempt windows if you don't clear first time
  • Detailed feedback report on every section
  • Mock papers + walkthrough during the program
  • Hard copy of the certificate on request
See the credential
# meet your instructor

You're not learning from a content team. You're learning from the person who built it.

RK

Rajesh Kumar

Principal DevOps Engineer and Architect
20 years · DevOps · SRE · Security Early-bird practitioner · MLOps · AIOps Ex-PayPay · SoftwareAG · ServiceNow · Adobe · Intuit · IBM · Accenture 10,000+ engineers trained M.Tech · BITS Pilani 25+ certifications

Rajesh is a working practitioner with 20 years across DevOps, SRE and Security, and an early-bird operator in MLOps and AIOps — he was already running model-deployment and telemetry-driven incident pipelines years before either term became industry vocabulary. He has held principal engineering and architect roles at PayPay, SoftwareAG, ServiceNow (Netherlands), JDA Software, Intuit, Adobe, IBM/Emptoris, Ness, MindTree and Accenture. He has personally trained engineers at JPMorgan Chase, Wells Fargo, Bank of America, Verizon, Nokia, World Bank, GE Healthcare, VMware, Citrix, Oracle, Qualcomm, Ericsson, Splunk, New Relic, Datadog, Airbus, AstraZeneca, Bosch, Mercedes-Benz, Vodafone, Deloitte, EY, Capgemini, Infosys, Cognizant, HCL, Wipro and dozens more. He teaches what he runs — not what he reads.

Connect on LinkedIn rajeshkumar.xyz
# your credential

A certificate engineers actually recognise — and recruiters look for.

Every SC-100 certificate is issued with a unique credential ID, a tamper-proof QR code, and a verification URL on devopsschool.com/certificates. Add it to LinkedIn in one click.

  •   Lifetime verifiable on our public registry
  •   PDF + digital badge (Credly-compatible)
  •   Recognised by hiring partners across 50+ countries
  •   Hard copy shipped on request — order here
Get certified — ₹34,999
Certificate of completion
Jane Engineer
has successfully completed
Microsoft Certified: Cybersecurity Architect Expert (SC-100)
Credential ID · DS-SC-100-XXXX-XXXX
# what learners say

4.8 / 5 from 2,300+ engineers. Here's what a few of them said.

# pricing

Pick the level of support that fits your goal.

Every plan includes the full curriculum, recorded sessions, and access to our learner community.

Every plan includes 1 year of full DevOpsSchool LMS access.
Not just this one course — the entire LMS: 20+ courses, 50+ tools, videos, quizzes, assignments, and end-to-end projects. Worth ₹40,000+ on its own.
See what's in the LMS
Self-paced video ₹833 / month · billed yearly (₹9,996) All recorded sessions, labs & the full LMS — learn at your own pace.
  • Full 100+ hour recorded curriculum
  • 14 hands-on capstones on your own cloud lab (free-tier setup walkthrough included)
  • 1-year access — recordings, labs & updates
  • 3-hr online open-book exam
  • Industry-recognised certificate on completion
  • Lifetime forum support
  • Full LMS access — 20+ courses & 50+ tools
  • Live instructor classes
  • 1-on-1 mentor sessions
Get self-paced — ₹833/mo
MOST POPULAR Live & Interactive ₹34,999 ₹49,999 5-week live cohort + complete LMS bundle. The default for engineers who want to ship.
  • Everything in Self-paced
  • 5-week cohort · 60+ hrs live instructor classes
  • Weekly mentor office hours
  • 6 × 30-min 1-on-1 mentor sessions
  • Cohort Slack + alumni community
  • Capstone code review by instructor
  • Exam preparation & mock papers
  • Lifetime forum support
  • Full LMS access — 20+ courses & 50+ tools
Reserve seat — ₹34,999
1-on-1 Mentorship ₹99,999 full program Dedicated senior practitioner. Pace, schedule and labs tailored to you.
  • Everything in Live & Interactive
  • Private 1-on-1 instructor (your schedule)
  • Custom curriculum & labs for your stack
  • Resume & LinkedIn review
  • Mock interview & salary negotiation prep
  • Capstone & portfolio code review
  • Priority response from instructor
  • Lifetime forum support
  • Full LMS access — 20+ courses & 50+ tools
Enrol 1-on-1 — ₹99,999
Cohort-cancellation refund
If we cancel or postpone a cohort and you decline the rescheduled session, you get 100% refund within 15 days. Refund policy →
Terms & course material
All training material is the IP of DevOpsSchool and for the enrolled learner's personal use only. Terms →
Your data stays with us
We never share your data with third parties. Unsubscribe from communications anytime. Privacy →

Need an invoice for your employer? Request a corporate quote →  ·  Taxes (GST) where applicable are billed in addition to the listed price.

# why us

Why engineers pick DevOpsSchool over the alternatives.

Not slides. Not a 500-seat MOOC. Not a temporary sandbox login. Three things make the difference — then compare us line-by-line.

100% live demo. 0% slides.

Every session is the instructor screen-sharing a real working lab and building the thing in front of you — then you build it yourself. No PowerPoint, no "imagine if…".

You build your own lab.

We guide you through provisioning a free-tier AWS / Azure / GCP environment on day one — the same skill you'll use at work. A temporary sandbox login disappears the day the cohort ends. Your own lab doesn't.

10 learners. By design.

Cohorts are capped at 10 by design. The instructor still knows your name in week 4 — and still has time to debug the weird production thing you brought from work.

What matters YouTube + blogs Generic online course Boot camp DevOpsSchool SC-100
Teaching method You piece it together yourself Pre-recorded talking-head + slides Mix of slides & some labs Live demos in a real lab — every session
Cohort size 1 (you, alone) Hundreds to thousands 30–60 per batch 10 by design — instructor knows your name
Lab environment None Throwaway sandbox Shared sandbox login Your own AWS/Azure/GCP, guided setup
Per-tool structure Ad-hoc Inconsistent across modules Theme-based, varies wildly 5 hrs · 2 assignments · 1 capstone for every tool
Final assessment None Multiple-choice quiz Mini-project 3-hour open-book scenario exam
Portfolio at the end What you built solo 1–2 generic toy projects 1 capstone 1 capstone per tool — GitHub-public
Instructor pedigree Mixed (creator-economy) Mixed (often academic) Recent-grad TAs common Rajesh Kumar — 20 yrs, ex-PayPay/ServiceNow/Adobe
Cohort start cadence N/A — pure self-pace Self-paced only Quarterly windows New cohort every 1st of the month
Post-program support None Drip-fed retention emails 30–90 day Slack Lifetime forum + alumni community
LMS bundled No This one course only This program only 1 year full LMS — 20+ courses, 50+ tools
Refund posture N/A Vendor-specific, often none after start Usually none after week 1 100% within 15 days if we cancel
Total cost (full program) Free, slow ₹15K – ₹50K per single course ₹80K – ₹3L+ ₹34,999 · LMS + lifetime forum included

Still on the fence? Talk to an advisor →   — they'll tell you straight if SC-100 fits your goal.

# frequently asked

Everything you'd ask on a 1-on-1 call.

Don't see your question? Ask us directly →

Do I need prior DevOps or coding experience?
A working knowledge of Linux command line and basic Git is enough. We'll bring you up to speed on everything else from Module 1. About 30% of every cohort enters from a sysadmin / dev / QA background.
What if I miss a live class?
Every session is recorded and shared with the cohort within 24 hours. You retain access to the recordings and lab repositories for the duration of the cohort and a defined access window after it. Specific access duration is confirmed at enrolment.
How does the certificate work? Is it accredited?
We issue a DevOpsSchool-credentialed digital certificate plus a verifiable badge. Each certificate has a unique credential ID and a public verification URL. While it isn't a vendor exam like AWS or CNCF, every cohort includes coaching toward those external exams as a track-add.
Can I pay in instalments / EMI?
Yes — 3, 6, and 12-month plans are available via our payment partners with 0% interest on the 3-month option. We also support employer invoicing.
What's the refund policy?
Once a training cohort is confirmed, the seat is generally non-refundable. The exception is when we cancel or postpone — instructor unavailability, low enrolment, or force majeure — in which case you receive a 100% refund within 15 working days, or you can join the rescheduled cohort. GST and payment-gateway fees are not refunded. Full details on the refund policy page.
Do you give us a cloud sandbox, or do we set one up?
We do it the way you'll do it on the job — you provision your own AWS / Azure / GCP lab, and we walk you through the free-tier setup step-by-step before module 1 starts. Most labs run at zero out-of-pocket. The point is that the skill of owning your infrastructure goes with you forever; a sandbox login disappears the day the cohort ends.
Do you offer corporate or team enrolments?
Yes — private cohorts for teams of 8+ are our most-requested format. We can run them on your schedule, in your VPC, against your internal toolchain. Request a quote.
What time-zones do the live cohorts run in?
Default schedule is IST-friendly, but the weekend cohort works for EST/CET/GMT engineers as well. Recordings cover the rest. We also run a North America-specific cohort every quarter — ask us for the calendar.
Still on the fence?

Talk to an advisor — they'll tell you straight whether this fits your goal.

Talk to advisor
# ready when you are

Reserve your SC-100 seat — or talk to an advisor first.

Next cohort starts 1st of next month. Only 3 of 10 seats remaining. Drop your details and we'll send the full syllabus + book a free 20-min consult to map this cert to your goal.

  • No spam, no auto-dial bots
  • Syllabus PDF in your inbox in 60 seconds
  • One human reply within 4 working hours
By submitting you agree to be contacted by email, phone, or WhatsApp by DevOpsSchool about this program. We don't share your data with third parties and you can unsubscribe anytime. See privacy · terms · refund.
Talk to advisor Enrol — ₹34,999