1 / 11

Microsoft Security Operations Analyst SC-200 Real Questions

PassQuestion provides the latest Microsoft Security Operations Analyst SC-200 Real Questions to help you pass your exam successfully.

examquestionsonline
Télécharger la présentation

Microsoft Security Operations Analyst SC-200 Real Questions

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. SC-200 Free Questions SC-200 Free Questions Microsoft Security Operations Analyst Microsoft Security Operations Analyst https://www.passquestion.com/ https://www.passquestion.com/SC-200 SC-200.html .html

  2. Question 1 Question 1 You need to recommend a solution to meet the technical requirements for the Azure You need to recommend a solution to meet the technical requirements for the Azure virtual machines. virtual machines. What should you include in the recommendation? What should you include in the recommendation? A. just-in-time (JIT) access A. just-in-time (JIT) access B. Azure Defender B. Azure Defender C. Azure Firewall C. Azure Firewall D. Azure Application Gateway D. Azure Application Gateway Answer: B Answer: B

  3. Question 2 Question 2 The issue for which team can be resolved by using Microsoft Defender for Office 365? The issue for which team can be resolved by using Microsoft Defender for Office 365? A. executive A. executive B. marketing B. marketing C. security C. security D. sales D. sales Answer: B Answer: B

  4. Question 3 Question 3 The issue for which team can be resolved by using Microsoft Defender for Endpoint? The issue for which team can be resolved by using Microsoft Defender for Endpoint? A. executive A. executive B. sales B. sales C. marketing C. marketing Answer: B Answer: B

  5. Question 4 Question 4 You need to remediate active attacks to meet the technical requirements. You need to remediate active attacks to meet the technical requirements. What should you include in the solution? What should you include in the solution? A. Azure Automation runbooks A. Azure Automation runbooks B. Azure Logic Apps B. Azure Logic Apps C. Azure Functions C. Azure Functions D Azure Sentinel livestreams D Azure Sentinel livestreams Answer: B Answer: B

  6. Question 5 Question 5 You need to assign a role-based access control (RBAC) role to admin1 to meet the Azure Sentinel You need to assign a role-based access control (RBAC) role to admin1 to meet the Azure Sentinel requirements and the business requirements. requirements and the business requirements. Which role should you assign? Which role should you assign? A. Automation Operator A. Automation Operator B. Automation Runbook Operator B. Automation Runbook Operator C. Azure Sentinel Contributor C. Azure Sentinel Contributor D. Logic App Contributor D. Logic App Contributor Answer: C Answer: C

  7. Question 6 Question 6 You need to create the test rule to meet the Azure Sentinel requirements. You need to create the test rule to meet the Azure Sentinel requirements. What should you do when you create the rule? What should you do when you create the rule? A. From Set rule logic, turn off suppression. A. From Set rule logic, turn off suppression. B. From Analytics rule details, configure the tactics. B. From Analytics rule details, configure the tactics. C. From Set rule logic, map the entities. C. From Set rule logic, map the entities. D. From Analytics rule details, configure the severity. D. From Analytics rule details, configure the severity. Answer: C Answer: C

  8. Question 7 Question 7 You need to modify the anomaly detection policy settings to meet the Cloud You need to modify the anomaly detection policy settings to meet the Cloud App Security requirements. App Security requirements. Which policy should you modify? Which policy should you modify? A. Activity from suspicious IP addresses A. Activity from suspicious IP addresses B. Activity from anonymous IP addresses B. Activity from anonymous IP addresses C. Impossible travel C. Impossible travel D. Risky sign-in D. Risky sign-in Answer: C Answer: C

  9. Question 8 Question 8 You need to implement the Azure Information Protection requirements. You need to implement the Azure Information Protection requirements. What should you configure first? What should you configure first? A. Device health and compliance reports settings in Microsoft Defender Security Center A. Device health and compliance reports settings in Microsoft Defender Security Center B. scanner clusters in Azure Information Protection from the Azure portal B. scanner clusters in Azure Information Protection from the Azure portal C. content scan jobs in Azure Information Protection from the Azure portal C. content scan jobs in Azure Information Protection from the Azure portal D. Advanced features from Settings in Microsoft Defender Security Center D. Advanced features from Settings in Microsoft Defender Security Center Answer: D Answer: D

  10. Question 9 Question 9 You receive an alert from Azure Defender for Key Vault. You receive an alert from Azure Defender for Key Vault. You discover that the alert is generated from multiple suspicious IP addresses. You discover that the alert is generated from multiple suspicious IP addresses. You need to reduce the potential of Key Vault secrets being leaked while you investigate the issue. You need to reduce the potential of Key Vault secrets being leaked while you investigate the issue. The solution must be implemented as soon as possible and must minimize the impact on legitimate The solution must be implemented as soon as possible and must minimize the impact on legitimate users. users. What should you do first? What should you do first? A. Modify the access control settings for the key vault. A. Modify the access control settings for the key vault. B. Enable the Key Vault firewall. B. Enable the Key Vault firewall. C. Create an application security group. C. Create an application security group. D. Modify the access policy for the key vault. D. Modify the access policy for the key vault. Answer: B Answer: B

  11. Question 10 Question 10 You plan to create a custom Azure Sentinel query that will provide a visual representation of the You plan to create a custom Azure Sentinel query that will provide a visual representation of the security alerts generated by Azure Security Center. security alerts generated by Azure Security Center. You need to create a query that will be used to display a bar graph. You need to create a query that will be used to display a bar graph. What should you include in the query? What should you include in the query? A. extend A. extend B. bin B. bin C. count C. count D. workspace D. workspace Answer: C Answer: C

More Related