Advanced Enterprise Architecture Design and Management in Microsoft Azure (AZURE2)

Microsoft, Azure

This course builds on Azure Fundamentals and focuses on designing and operating enterprise-grade architectures in Azure. It covers the Cloud Adoption Framework, practical Landing Zones, advanced networking patterns and security and governance for hybrid and multi‑cloud environments, including subscription design and management groups.

Hands-on labs and workshops emphasize automation, detection and reliability: Bicep and Terraform modules, Microsoft Sentinel (KQL) detections and playbooks, operational reliability with SLO/SLI and runbooks, plus FinOps cost optimization and reference templates for DR/BCP.

Location, current course term



Brno + online (volitelně)
11/24/2025 - 11/25/2025 CZECH
Order 		1/19/2026 - 1/20/2026 CZECH
Order 		3/16/2026 - 3/17/2026 CZECH
Order
Praha + online (volitelně)
12/1/2025 - 12/2/2025 CZECH
Order
Custom Customized Training (date, location, content, duration)

The course:

Hide detail
  • Cloud Adoption Framework & Landing Zones
    1. Overview of CAF phases (Strategy, Plan, Ready, Adopt, Govern, Manage)
    2. Landing Zone concepts: management groups, subscription design, policy baseline
    3. Tools: Azure Landing Zone Accelerator, Terraform modules
  • Advanced Networking
    1. Hub‑Spoke, Virtual WAN, ExpressRoute vs. VPN, Azure Firewall, DDoS Protection
    2. Private Link vs. Service Endpoints, Private DNS Zones
    3. Application Gateway, Front Door, Traffic Manager — global distribution and WAF
  • Security & Compliance
    1. Microsoft Defender for Cloud — recommendations, hardening, workload protection
    2. Microsoft Sentinel — data connectors, KQL detections, playbooks (Logic Apps)
    3. PIM, Conditional Access, Identity Protection
    4. Encryption: disk encryption, Key Vault + Managed HSM, CMK scenarios
    5. Compliance & audit (Azure Policy, regulatory compliance dashboard)
  • IaC & Automation
    1. Bicep vs. Terraform — modules, repo structure, CI/CD pipelines (GitHub Actions/Azure DevOps)
    2. Policy-as-Code — testing and deployment in pipelines (OPA/Checkov/Tfsec)
    3. Automation Accounts, Functions, Logic Apps for operational tasks
  • Observability, SLO/SLI & Operations
    1. Deep dive into Azure Monitor, advanced Log Analytics KQL queries
    2. Application Insights distributed tracing
    3. Incident response runbooks, alert routing (Teams/Slack/PagerDuty)
    4. Cost Management advanced: Savings Plans/Reserved Instances, rightsizing, budgets & showback
  • DR/BCP & Resilience Patterns
    1. Geo‑redundant storage, cross‑region failover, Azure Site Recovery
    2. Chaos engineering in Azure (Chaos Studio)
    3. Runbooks and DR testing
  • Hands‑on / Architecture Workshops
    1. Workshop 1: design Landing Zone and policy baseline (practical)
    2. Workshop 2: Sentinel detection rule and automated playbook response
    3. (Optional) Terraform/Bicep lab: VNet/Hub‑Spoke module and pipeline
Assumed knowledge:
Basic knowledge of DevOps tools such as Git, CI/CD, Docker/K8s, and Terraform.
Recommended previous course:
Azure – Platform Fundamentals in Practice (AZURE1)
Schedule:
2 days (9:00 AM - 5:00 PM )
Course price:
672.00 € ( 813.12 € incl. 21% VAT)
Language: