Merge pull request #54061 from ceperezb/CEPEREZB-sc900-security-management-azure

update module

Author: Carolyn135

learn-pr/wwl-sci/describe-security-management-capabilities-of-azure/1-introduction.yml

@@ -1,13 +1,13 @@
-### YamlMime:ModuleUnit
-uid: learn.wwl.describe-security-management-capabilities-of-azure.introduction
-title: Introduction
-metadata:
-  title: Introduction
-  description: "Introduction"
-  ms.date: 08/05/2024
-  author: wwlpublish
-  ms.author: ceperezb
-  ms.topic: unit
-durationInMinutes: 1
-content: |
-  [!include[](includes/1-introduction.md)]
+### YamlMime:ModuleUnit
+uid: learn.wwl.describe-security-management-capabilities-of-azure.introduction
+title: Introduction
+metadata:
+  title: Introduction
+  description: "Introduction"
+  ms.date: 03/31/2026
+  author: wwlpublish
+  ms.author: ceperezb
+  ms.topic: unit
+durationInMinutes: 1
+content: |
+  [!include[](includes/1-introduction.md)]

learn-pr/wwl-sci/describe-security-management-capabilities-of-azure/2-describe-defender-cloud.yml

@@ -1,13 +1,13 @@
-### YamlMime:ModuleUnit
-uid: learn.wwl.describe-security-management-capabilities-of-azure.describe-&-explore-azure-security-center
-title: Describe Microsoft Defender for Cloud
-metadata:
-  title: Describe Microsoft Defender for Cloud
-  description: "Describe Microsoft Defender for Cloud"
-  ms.date: 08/05/2024
-  author: wwlpublish
-  ms.author: ceperezb
-  ms.topic: unit
-durationInMinutes: 3
-content: |
-  [!include[](includes/2-describe-defender-cloud.md)]
+### YamlMime:ModuleUnit
+uid: learn.wwl.describe-security-management-capabilities-of-azure.describe-&-explore-azure-security-center
+title: Describe Microsoft Defender for Cloud
+metadata:
+  title: Describe Microsoft Defender for Cloud
+  description: "Describe Microsoft Defender for Cloud"
+  ms.date: 03/31/2026
+  author: wwlpublish
+  ms.author: ceperezb
+  ms.topic: unit
+durationInMinutes: 5
+content: |
+  [!include[](includes/2-describe-defender-cloud.md)]

learn-pr/wwl-sci/describe-security-management-capabilities-of-azure/3-baselines-for-azure.yml

@@ -1,13 +1,13 @@
-### YamlMime:ModuleUnit
-uid: learn.wwl.describe-security-management-capabilities-of-azure.baselines-for-azure
-title: Describe how security policies and initiatives improve cloud security posture
-metadata:
-  title: Describe how security policies and initiatives improve cloud security posture
-  description: "Describe how security policies and initiatives improve cloud security posture"
-  ms.date: 08/05/2024
-  author: wwlpublish
-  ms.author: ceperezb
-  ms.topic: unit
-durationInMinutes: 6
-content: |
-  [!include[](includes/3-baselines-for-azure.md)]
+### YamlMime:ModuleUnit
+uid: learn.wwl.describe-security-management-capabilities-of-azure.baselines-for-azure
+title: Describe how security policies, standards, and recommendations improve cloud security posture
+metadata:
+  title: Describe how security policies, standards, and recommendations improve cloud security posture
+  description: "Describe how security policies, standards, and recommendations improve cloud security posture"
+  ms.date: 03/31/2026
+  author: wwlpublish
+  ms.author: ceperezb
+  ms.topic: unit
+durationInMinutes: 6
+content: |
+  [!include[](includes/3-baselines-for-azure.md)]

learn-pr/wwl-sci/describe-security-management-capabilities-of-azure/4-describe-cloud-security-posture-management.yml

@@ -1,13 +1,13 @@
-### YamlMime:ModuleUnit
-uid: learn.wwl.describe-security-management-capabilities-of-azure.describe-cloud-security-posture-management-cspm
-title: Describe Cloud security posture management
-metadata:
-  title: Describe Cloud security posture management
-  description: "Describe Cloud security posture management"
-  ms.date: 08/05/2024
-  author: wwlpublish
-  ms.author: ceperezb
-  ms.topic: unit
-durationInMinutes: 3
-content: |
-  [!include[](includes/4-describe-cloud-security-posture-management.md)]
+### YamlMime:ModuleUnit
+uid: learn.wwl.describe-security-management-capabilities-of-azure.describe-cloud-security-posture-management-cspm
+title: Describe Cloud security posture management
+metadata:
+  title: Describe Cloud security posture management
+  description: "Describe Cloud security posture management"
+  ms.date: 03/31/2026
+  author: wwlpublish
+  ms.author: ceperezb
+  ms.topic: unit
+durationInMinutes: 5
+content: |
+  [!include[](includes/4-describe-cloud-security-posture-management.md)]

learn-pr/wwl-sci/describe-security-management-capabilities-of-azure/5a-describe-enhanced-security-defender-cloud.yml

@@ -1,13 +1,13 @@
-### YamlMime:ModuleUnit
-uid: learn.wwl.describe-security-management-capabilities-of-azure.describe-benefit-use-cases-defender
-title: Describe the enhanced security of Microsoft Defender for Cloud
-metadata:
-  title: Describe the enhanced security of Microsoft Defender for Cloud
-  description: "Describe the enhanced security of Microsoft Defender for Cloud"
-  ms.date: 08/05/2024
-  author: wwlpublish
-  ms.author: ceperezb
-  ms.topic: unit
-durationInMinutes: 5
-content: |
-  [!include[](includes/5a-describe-enhanced-security-defender-cloud.md)]
+### YamlMime:ModuleUnit
+uid: learn.wwl.describe-security-management-capabilities-of-azure.describe-benefit-use-cases-defender
+title: Describe the enhanced security of Microsoft Defender for Cloud
+metadata:
+  title: Describe the enhanced security of Microsoft Defender for Cloud
+  description: "Describe the enhanced security of Microsoft Defender for Cloud"
+  ms.date: 03/31/2026
+  author: wwlpublish
+  ms.author: ceperezb
+  ms.topic: unit
+durationInMinutes: 5
+content: |
+  [!include[](includes/5a-describe-enhanced-security-defender-cloud.md)]

learn-pr/wwl-sci/describe-security-management-capabilities-of-azure/6-describe-dev-ops-security-management.yml

@@ -1,13 +1,13 @@
-### YamlMime:ModuleUnit
-uid: learn.wwl.describe-security-management-capabilities-of-azure.describe-dev-ops-security-management
-title: Describe DevOps security management
-metadata:
-  title: Describe DevOps security management
-  description: "Describe DevOps security management"
-  ms.date: 08/05/2024
-  author: wwlpublish
-  ms.author: ceperezb
-  ms.topic: unit
-durationInMinutes: 3
-content: |
-  [!include[](includes/6-describe-dev-ops-security-management.md)]
+### YamlMime:ModuleUnit
+uid: learn.wwl.describe-security-management-capabilities-of-azure.describe-dev-ops-security-management
+title: Describe DevOps security management
+metadata:
+  title: Describe DevOps security management
+  description: "Describe DevOps security management"
+  ms.date: 03/31/2026
+  author: wwlpublish
+  ms.author: ceperezb
+  ms.topic: unit
+durationInMinutes: 4
+content: |
+  [!include[](includes/6-describe-dev-ops-security-management.md)]

learn-pr/wwl-sci/describe-security-management-capabilities-of-azure/7-knowledge-check.yml

@@ -1,61 +1,72 @@
-### YamlMime:ModuleUnit
-uid: learn.wwl.describe-security-management-capabilities-of-azure.knowledge-check
-title: Module assessment
-metadata:
-  title: Module assessment
-  description: "Knowledge check"
-  ms.date: 08/05/2024
-  author: wwlpublish
-  ms.author: ceperezb
-  ms.topic: unit
-  module_assessment: true
-durationInMinutes: 2
-content: |
-  [!include[](includes/7-knowledge-check.md)]
-quiz:
-  title: "Check your knowledge"
-  questions:
-  - content: "Microsoft Defender for Cloud covers three pillars of cloud security.  Which pillar provides visibility to help you understand your current security situation and provides hardening recommendations?"
-    choices:
-    - content: "Cloud security posture management (CSPM)"
-      isCorrect: true
-      explanation: "Correct. The CSPM pillar of Microsoft Defender for Cloud provides visibility and to help you understand your current security situation and provides hardening recommendations."
-    - content: "Cloud workload protection (CWP)"
-      isCorrect: false
-      explanation: "Incorrect.  Although CWP is an important pillar of cloud security for Microsoft Defender for Cloud, it's focused on detecting and resolving threats for resources, workload, and services.  It works with the CSPM pillar."
-    - content: "Microsoft Cloud security benchmark"
-      isCorrect: false
-      explanation: "Incorrect. The Microsoft cloud security benchmark (MCSB) provides prescriptive best practices and recommendations to help improve the security of workloads, data, and services on Azure and your multicloud environment."
-  - content: "An organization wants to add vulnerability scanning for its Azure resources to view, investigate, and remediate the findings directly within Microsoft Defender for Cloud. What functionality of Microsoft Defender for Cloud would they need to consider?"
-    choices:
-    - content: "Secure score and recommendations functionality that are part of the CSPM pillar of Microsoft Defender for Cloud."
-      isCorrect: false
-      explanation: "Incorrect. Secure score and recommendations functionality doesn't include vulnerability scanning."
-    - content: "The enhanced functionality that is provided through the Microsoft Defender plans and is part of the CWP pillar of Microsoft Defender for Cloud."
-      isCorrect: true
-      explanation: "Correct. Microsoft Defender plans provide enhanced security features for your workloads, including vulnerability scanning."
-    - content: "Security Benchmarks"
-      isCorrect: false
-      explanation: "Incorrect. The Microsoft cloud security benchmark (MCSB) provides prescriptive best practices and recommendations to help improve the security of workloads, data, and services on Azure, it doesn't provide vulnerability scanning."
-  - content: "Which framework does Microsoft Defender for Cloud apply as a default initiative for security and compliance and provides best practices and recommendations to help improve the security of workloads, data, and services on Azure and your multicloud environment?"
-    choices:
-    - content: "Microsoft Cloud security benchmark"
-      isCorrect: true
-      explanation: "Correct. The Microsoft cloud security benchmark that is automatically assigned to every subscription in Microsoft Defender for Cloud."
-    - content: "The Center for Internet Security (CIS) framework"
-      isCorrect: false
-      explanation: "Incorrect. Although the MCSB builds on the controls from the Center for Internet Security (CIS) and the National Institute of Standards and Technology (NIST) with a focus on cloud-centric security, it's the MCSB that is automatically applied as a default initiative."
-    - content: "The National Institute of Standards and Technology (NIST) framework"
-      isCorrect: false
-      explanation: "Incorrect. Although the MCSB builds on the controls from the Center for Internet Security (CIS) and the National Institute of Standards and Technology (NIST) with a focus on cloud-centric security, it's the MCSB that is automatically applied as a default initiative."
-  - content: "Which capability allows you to manage your connected DevOps environments and provides your security teams with visibility to discovered issues within those environments?"
-    choices:
-    - content: "The Defender for DevOps console"
-      isCorrect: true
-      explanation: "Correct. The Defender for DevOps console allows you to manage your connected DevOps environments and provides your security teams with a high level overview of discovered issues that may exist within them."
-    - content: "Secure score"
-      isCorrect: false
-      explanation: "Incorrect.  Although secure score in Microsoft Defender for Cloud provides single score so that you can tell, at a glance, your current security situation, it does not provide specific visibility to your DevOps environments. ."
-    - content: "The Microsoft cloud security benchmark (MCSB)"
-      isCorrect: false
-      explanation: "Incorrect. The Microsoft cloud security benchmark (MCSB) provides prescriptive best practices and recommendations to help improve the security of workloads, data, and services on Azure and your multicloud environment."
+### YamlMime:ModuleUnit
+uid: learn.wwl.describe-security-management-capabilities-of-azure.knowledge-check
+title: Module assessment
+metadata:
+  title: Module assessment
+  description: "Knowledge check"
+  ms.date: 03/31/2026
+  author: wwlpublish
+  ms.author: ceperezb
+  ms.topic: unit
+  module_assessment: true
+durationInMinutes: 2
+content: |
+  [!include[](includes/7-knowledge-check.md)]
+quiz:
+  title: "Check your knowledge"
+  questions:
+  - content: "Microsoft Defender for Cloud covers three pillars of cloud security. Which pillar provides visibility to help you understand your current security situation and provides hardening recommendations?"
+    choices:
+    - content: "Cloud security posture management (CSPM)"
+      isCorrect: true
+      explanation: "Correct. The CSPM pillar of Microsoft Defender for Cloud provides visibility and to help you understand your current security situation and provides hardening recommendations."
+    - content: "Cloud workload protection (CWP)"
+      isCorrect: false
+      explanation: "Incorrect. Although CWP is an important pillar of cloud security for Microsoft Defender for Cloud, it's focused on detecting and resolving threats for resources, workload, and services. It works with the CSPM pillar."
+    - content: "Microsoft Cloud security benchmark"
+      isCorrect: false
+      explanation: "Incorrect. The Microsoft cloud security benchmark (MCSB) provides prescriptive best practices and recommendations to help improve the security of workloads, data, and services on Azure and your multicloud environment."
+  - content: "An organization wants to add vulnerability scanning for its Azure resources to view, investigate, and remediate the findings directly within Microsoft Defender for Cloud. What functionality of Microsoft Defender for Cloud would they need to consider?"
+    choices:
+    - content: "Secure score and recommendations functionality that are part of the CSPM pillar of Microsoft Defender for Cloud."
+      isCorrect: false
+      explanation: "Incorrect. Secure score and recommendations functionality doesn't include vulnerability scanning."
+    - content: "The enhanced functionality that is provided through the Microsoft Defender plans and is part of the cloud workload protection platform (CWPP) pillar of Microsoft Defender for Cloud."
+      isCorrect: true
+      explanation: "Correct. Microsoft Defender plans provide enhanced security features for your workloads, including vulnerability scanning."
+    - content: "Security Benchmarks"
+      isCorrect: false
+      explanation: "Incorrect. The Microsoft cloud security benchmark (MCSB) provides prescriptive best practices and recommendations to help improve the security of workloads, data, and services on Azure, it doesn't provide vulnerability scanning."
+  - content: "Which framework does Microsoft Defender for Cloud apply as a default initiative for security and compliance and provides best practices and recommendations to help improve the security of workloads, data, and services on Azure and your multicloud environment?"
+    choices:
+    - content: "Microsoft Cloud security benchmark"
+      isCorrect: true
+      explanation: "Correct. The Microsoft cloud security benchmark that is automatically assigned to every subscription in Microsoft Defender for Cloud."
+    - content: "The Center for Internet Security (CIS) framework"
+      isCorrect: false
+      explanation: "Incorrect. Although the MCSB builds on the controls from the Center for Internet Security (CIS) and the National Institute of Standards and Technology (NIST) with a focus on cloud-centric security, it's the MCSB that is automatically applied as a default initiative."
+    - content: "The National Institute of Standards and Technology (NIST) framework"
+      isCorrect: false
+      explanation: "Incorrect. Although the MCSB builds on the controls from the Center for Internet Security (CIS) and the National Institute of Standards and Technology (NIST) with a focus on cloud-centric security, it's the MCSB that is automatically applied as a default initiative."
+  - content: "Which capability allows you to manage your connected DevOps environments and provides your security teams with visibility to discovered issues within those environments?"
+    choices:
+    - content: "The Defender for DevOps console"
+      isCorrect: true
+      explanation: "Correct. The Defender for DevOps console allows you to manage your connected DevOps environments and provides your security teams with a high level overview of discovered issues that may exist within them."
+    - content: "Secure score"
+      isCorrect: false
+      explanation: "Incorrect. Although secure score in Microsoft Defender for Cloud provides single score so that you can tell, at a glance, your current security situation, it doesn't provide specific visibility to your DevOps environments."
+    - content: "The Microsoft cloud security benchmark (MCSB)"
+      isCorrect: false
+      explanation: "Incorrect. The Microsoft cloud security benchmark (MCSB) provides prescriptive best practices and recommendations to help improve the security of workloads, data, and services on Azure and your multicloud environment."
+  - content: "An organization wants to understand what generative AI applications and models are running in their cloud environment and whether they're securely configured. Which capability in Microsoft Defender for Cloud addresses this need?"
+    choices:
+    - content: "AI security posture management (AI SPM)"
+      isCorrect: true
+      explanation: "Correct. AI SPM maintains an AI Bill of Materials (AI BOM) that catalogs your organization's generative AI workloads and assesses their security posture, surfacing recommendations and attack path analysis specific to AI."
+    - content: "AI threat protection"
+      isCorrect: false
+      explanation: "Incorrect. AI threat protection detects active threats targeting generative AI workloads in real time, such as prompt injection attacks and data leakage. Discovering and assessing the security posture of AI workloads is the role of AI security posture management (AI SPM)."
+    - content: "Cloud security explorer"
+      isCorrect: false
+      explanation: "Incorrect. The cloud security explorer lets security teams run graph-based queries to investigate security risks across cloud resources. It is not specifically focused on discovering and assessing the security posture of AI workloads."

learn-pr/wwl-sci/describe-security-management-capabilities-of-azure/8-summary-resources.yml

@@ -1,13 +1,13 @@
-### YamlMime:ModuleUnit
-uid: learn.wwl.describe-security-management-capabilities-of-azure.summary-resources
-title: Summary and resources
-metadata:
-  title: Summary and resources
-  description: "Summary and resources"
-  ms.date: 08/05/2024
-  author: wwlpublish
-  ms.author: ceperezb
-  ms.topic: unit
-durationInMinutes: 1
-content: |
-  [!include[](includes/8-summary-resources.md)]
+### YamlMime:ModuleUnit
+uid: learn.wwl.describe-security-management-capabilities-of-azure.summary-resources
+title: Summary and resources
+metadata:
+  title: Summary and resources
+  description: "Summary and resources"
+  ms.date: 03/31/2026
+  author: wwlpublish
+  ms.author: ceperezb
+  ms.topic: unit
+durationInMinutes: 1
+content: |
+  [!include[](includes/8-summary-resources.md)]