Azure

Understand IaaS, PaaS, and SaaS service models, the shared responsibility model, and why organizations move workloads to the cloud.

Navigate the Azure Portal, use Azure CLI and Azure PowerShell to create and manage resources interactively.

Understand how Azure organizes billing and access through subscriptions, management groups, and resource groups.

Learn how Azure's global infrastructure of regions, availability zones, and paired regions affects reliability and data residency.

Set up tenants, users, and groups in Microsoft Entra ID and understand how identity underpins every Azure service.

Assign built-in and custom roles at different scopes to enforce least-privilege access across your Azure resources.

Eliminate hardcoded credentials by using managed identities for Azure-to-Azure authentication and service principals for external integrations.

Provision, configure, and manage Linux and Windows VMs including sizing, disks, and availability sets.

Deploy web apps and APIs to a fully managed PaaS platform with built-in scaling, deployment slots, and CI/CD integration.

Build event-driven serverless functions that trigger from queues, HTTP requests, timers, and other Azure services.

Deploy and operate managed Kubernetes clusters for containerized workloads with integrated monitoring and scaling.

Run microservices and containerized apps on a serverless container platform without managing Kubernetes directly.

Design and create VNets, subnets, and address spaces to isolate and connect your Azure resources securely.

Control inbound and outbound traffic with Network Security Groups and centralized firewall policies.

Distribute traffic across regions and backends using Azure Load Balancer, Application Gateway, and Traffic Manager.

Configure custom DNS zones and use private endpoints to access Azure services over your VNet without public exposure.

Store unstructured data in blob containers, configure access tiers (hot/cool/archive), and set lifecycle policies.

Provision and manage relational databases with built-in high availability, intelligent performance tuning, and elastic pools.

Build globally distributed, multi-model NoSQL applications with guaranteed single-digit-millisecond reads and multiple consistency levels.

Add a high-throughput caching layer for session state, leaderboards, and real-time data with managed Redis instances.

Define your Azure infrastructure as code using ARM JSON templates or the more concise Bicep DSL for repeatable deployments.

Use HashiCorp Terraform as a multi-cloud alternative for provisioning and managing Azure resources declaratively.

Set up CI/CD pipelines with Azure DevOps to build, test, and deploy applications automatically on every code change.

Deploy to Azure directly from GitHub repositories using pre-built actions and OIDC-based authentication.

Securely store and access secrets, certificates, and encryption keys with audited, policy-controlled vaults.

Collect metrics and logs from all Azure resources, write KQL queries, and set up alerts to detect issues proactively.

Assess your security posture, get actionable recommendations, and enable advanced threat protection across your subscriptions.

Decouple services with reliable message queues (Service Bus) and reactive event routing (Event Grid) for scalable architectures.

Evaluate and improve workloads across the five pillars: reliability, security, cost optimization, operational excellence, and performance efficiency.

Use Azure Cost Management, budgets, and reservations to monitor spending and reduce cloud waste without sacrificing performance.