Microsoft Certified: Cybersecurity Architect Expert - (SC-100) Exam Questions

Your team has a setup for Microsoft Sentinel in place. They have the Data connectors setup and the Analytics rules in place.

They now want to develop an automation and response strategy that would send alerts via email to a Security Administrative team. They want to be able achieve this without much manual effort. Which of the following can be used for this requirement?

Your company has just setup an Azure subscription. They would be deploying a set of resources which would include Azure virtual machines and Azure SQL databases. They want to be able to manage the security incidents from a central location based on the resources defined within the subscription. They also want to be able to hunt for any sort of potential threats. Which of the following could be used for this requirement?

Your company has the following Azure storage account in place

And the below virtual machine as part of the subscription

You have to ensure that only appvm can access the storage account

Which of the following can be configured for this requirement?

Which of the following services has support for authorization with Azure Active Directory? Choose 2 answers from the options given below

Your company has a set of Windows 10 devices. They want to manage and monitor the security baselines of these devices. Which of the following can be used for this requirement?

Your company has the following resources defined as part of their Azure subscription

The company wants to have a centralized logging solution that would cater to the following requirements

1) Stream the audit logs for the Azure SQL database

2) Stream the web server logs of the Azure Web App

3) Provide retention of data for 180 days

4) Be able to query for the log data

Which of the following could be used to store the log data?

Your company is making use of Microsoft Defender for Cloud. They have a number of resources as part of the subscription that is being monitored by Microsoft Defender for Cloud. You are reviewing the controls when it comes to Azure Security Benchmark V3.

Under which control would the following recommendation come under?

“Ensure Microsoft Defender for servers is enabled”

Your company is making use of Microsoft Defender for Cloud. They have a number of resources as part of the subscription that is being monitored by Microsoft Defender for Cloud. You are reviewing the controls when it comes to Azure Security Benchmark V3.

Under which control would the following recommendation come under?

“Perform vulnerability assessments”

Your company is making use of Microsoft Defender for Cloud. They want to make use of the automation workflow feature to remediate alerts as they occur. Which of the following resource is needed in Azure for this requirement?

Your company is currently making use of the enhanced security features for Microsoft Defender for Cloud. They want to track the controls when it comes to NIST SP 800-53 R4 set of policies. How can they achieve this?