Microsoft Azure

Microsoft Cybersecurity Architect

SC-100
Popular Trending

Become a Microsoft Cybersecurity Architect by passing the SC-100 exam.

147 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 121–130 of 147

Q121

Which service provides cloud-scale security analytics?

  • A Microsoft Sentinel
  • B Azure DevOps
  • C Azure Monitor
  • D Azure Logic Apps
Explanation Microsoft Sentinel is designed for security analytics; others serve different functions.
Q122

A company needs to ensure only specific users can access sensitive data. Which Azure feature should they implement?

  • A Azure Subscription
  • B Network Security Groups
  • C Role-Based Access Control (RBAC)
  • D Resource Locks
Explanation RBAC assigns specific access rights to users; others do not control access directly.
Q123

You are configuring Azure Security Center notifications. What happens if you enable email alerts for high severity issues?

  • A You receive alerts for all issues
  • B Only critical incidents trigger alerts
  • C You alert on low severity issues too
  • D Emails are sent based on configuration
Explanation Alerts will only trigger based on specified configurations for severe issues; others misrepresent the alerting process.
Q124

Which Azure service allows you to monitor and manage security across cloud environments?

  • A Azure Security Center
  • B Azure Cosmos DB
  • C Azure Active Directory
  • D Azure Functions
Explanation Azure Security Center provides a unified security management system, while the others serve different purposes.
Q125

A company needs to restrict access to its Azure resources from specific geographic locations. What should they configure?

  • A Resource Policies
  • B Geo-fencing
  • C Network Security Groups
  • D Azure Firewall
Explanation Geo-fencing specifically targets access restrictions based on geographic locations; the other options do not fulfill this need.
Q126

What happens when a Conditional Access policy is in conflict with a higher privilege grant?

  • A Conflict raises a compliance alert
  • B Higher privilege grant takes precedence
  • C User is denied access entirely
  • D Policy becomes inactive
Explanation In Azure, higher privilege grants generally take precedence over Conditional Access policies, unlike other scenarios described.
Q127

Which Azure service helps monitor compliance with security standards?

  • A Azure Policy
  • B Azure Monitor
  • C Azure Security Center
  • D Azure Sentinel
Explanation Azure Security Center specifically focuses on compliance and security monitoring, while the other options serve different roles.
Q128

A company needs to ensure that sensitive data is encrypted at rest and in transit. Which solution should they implement?

  • A Azure Key Vault
  • B Azure Disk Encryption
  • C Azure SQL Transparent Data Encryption
  • D Network Security Groups
Explanation Azure Disk Encryption secures data at rest specifically, while the others address different aspects of security.
Q129

What happens when you assign an Azure Role to a user at the resource group level?

  • A Role is overridden by lower levels
  • B User gains permissions for all resources
  • C User loses permissions for certain resources
  • D Role applies only to new resources
Explanation Assigning a role at the resource group level grants permissions to all resources within that group, unlike the other options.
Q130

Which service allows for real-time threat detection in Azure?

  • A Azure Sentinel
  • B Azure Blob Storage
  • C Azure Functions
  • D Azure DevOps
Explanation Azure Sentinel provides SIEM capabilities for threat detection; the others do not specialize in security monitoring.