update intro, summary, and KC

Author: ceperezb

learn-pr/wwl-sci/design-solutions-network-security/includes/1-introduction.md

@@ -1,6 +1,6 @@
 This module provides an overview of some of the technical considerations and available capabilities to design solutions for network security as a Microsoft cybersecurity architect.
 
-Imagine you're a cybersecurity architect for a multinational corporation. Your company decided to migrate its infrastructure to Azure. You're tasked with ensuring the security and efficiency of the network architecture. Securing network infrastructure involves understanding and implementing Azure's segmentation features, setting up network security groups, utilizing Microsoft Defender for Domain Name Services (DNS), analyzing network traffic, and managing internet and private access. The challenge lies in choosing the right tools and strategies to ensure optimal network performance and security.
+Imagine you're a cybersecurity architect for a multinational corporation. Your company decided to migrate its infrastructure to Azure. You're tasked with ensuring the security and efficiency of the network architecture. Securing network infrastructure involves understanding and implementing Azure's segmentation features, setting up network security groups, utilizing the network map functionality in Microsoft Defender for Cloud, analyzing network traffic, and managing internet and private access. The challenge lies in choosing the right tools and strategies to ensure optimal network performance and security.
 
 ## Learning objectives
 

learn-pr/wwl-sci/design-solutions-network-security/includes/9-summary.md

@@ -1,6 +1,6 @@
-In this module, you have learned about the various features Azure offers for network security segmentation, including Subscriptions, Virtual Networks (VNets), Network Security Groups (NSGs), Application Security Groups (ASGs), and Azure Firewall. You've also explored the three common patterns for segmenting a workload in Azure: Single VNet, Multiple VNets with peering, and Multiple VNets in a hub and spoke model. Additionally, you've delved into the functionalities of Azure network security groups and Microsoft Defender for DNS, both crucial for maintaining network security.
+In this module, you have learned about the various features Azure offers for network security segmentation, including Subscriptions, Virtual Networks (VNets), Network Security Groups (NSGs), Application Security Groups (ASGs), and Azure Firewall. You've also explored the three common patterns for segmenting a workload in Azure: Single VNet, Multiple VNets with peering, and Multiple VNets in a hub and spoke model. Additionally, you've delved into the functionalities of Azure network security groups and network map both crucial for maintaining network security.
 
-The main takeaways from this module include understanding how to use Azure's segmentation features to secure your network and resources. You've learned how to choose the appropriate segmentation pattern based on your operational needs. You've also gained knowledge on how to use Azure network security groups to filter network traffic and how Microsoft Defender for DNS adds an extra layer of protection to your resources. Furthermore, you've learnt about the importance of capturing and analyzing network traffic in real-time using Azure VPN Gateway and Azure Network Watcher. Lastly, you've understood how Microsoft Entra Internet Access and Microsoft Entra Private Access can enhance your organization's internet security and manage access to private apps and resources respectively.
+The main takeaways from this module include understanding how to use Azure's segmentation features to secure your network and resources. You've learned how to choose the appropriate segmentation pattern based on your operational needs. You've also gained knowledge on how to use Azure network security groups to filter network traffic and how network map in Defender for Cloud helps protect your network resources. Furthermore, you've learnt about the importance of capturing and analyzing network traffic in real-time using Azure VPN Gateway and Azure Network Watcher. Lastly, you've understood how Microsoft Entra Internet Access and Microsoft Entra Private Access can enhance your organization's internet security and manage access to private apps and resources respectively.
 
 ## Learning objectives
 
@@ -10,13 +10,15 @@ You learned how to:
 - Design solutions for filtering traffic with network security groups
 - Design solutions for network posture measurement
 - Design solutions for network monitoring
-- Evaluate solutions that use Entra Internet Access and Entra Private Access
+- Evaluate solutions that use Microsoft Entra Internet Access and Microsoft Entra Private Access
 
 ## Learn more with security documentation
 
 - [Implement network segmentation patterns - Microsoft Azure Well-Architected Framework | Microsoft Learn](/azure/architecture/framework/security/design-network-segmentation)
 - [Azure network security groups overview | Microsoft Learn](/azure/virtual-network/network-security-groups-overview)
-- [Microsoft Defender for DNS - the benefits and features | Microsoft Learn](/azure/defender-for-cloud/defender-for-dns-introduction)
+- [Protect network resources](/azure/defender-for-cloud/protect-network-resources)
+- [Networking security recommendations](/azure/defender-for-cloud/recommendations-reference-networking)
+- [Review the asset inventory](/azure/defender-for-cloud/asset-inventory)
 - [Plan for traffic inspection - Cloud Adoption Framework | Microsoft Learn](/azure/cloud-adoption-framework/ready/azure-best-practices/plan-for-traffic-inspection)
 
 ## Learn more with reference architectures