Microsoft Azure

Microsoft Security Operations Analyst

SC-200
Popular

Validate your skills with the SC-200 exam for Microsoft Security Operations Analyst.

147 questions 0 views Free
Start Mock Test Timed · Full-length · Scored

Questions 121–130 of 147

Q121

Which service provides advanced threat protection for Azure resources?

  • A Microsoft Defender for Cloud
  • B Azure Security Center
  • C Azure Monitor
  • D Log Analytics
Explanation Microsoft Defender for Cloud offers advanced threat protection, while the others focus on monitoring or management.
Q122

A company needs to restrict access to Azure resources based on user roles. Which feature should they use?

  • A Network Security Groups
  • B Azure Active Directory
  • C Role-Based Access Control
  • D Azure Policy
Explanation Role-Based Access Control (RBAC) effectively manages access, unlike the others which serve different purposes.
Q123

You are configuring a Logic App for data ingestion with a source URL. What happens if the URL becomes unreachable?

  • A Data will continue to flow.
  • B An alert is sent immediately.
  • C The Logic App fails.
  • D Retries will happen based on settings.
Explanation Logic Apps have built-in retry policies for temporary failures, unlike abrupt failures suggested in other options.
Q124

Which Azure service can be used for SIEM?

  • A Azure Sentinel
  • B Azure Blob Storage
  • C Azure Functions
  • D Azure App Service
Explanation Azure Sentinel is specifically designed for SIEM, while others serve different purposes.
Q125

A company needs to classify data according to sensitivity. Which Azure feature should be used?

  • A Azure Information Protection
  • B Azure DevOps
  • C Azure Virtual Network
  • D Azure Active Directory
Explanation Azure Information Protection provides data classification based on sensitivity, unlike the others.
Q126

You are configuring Azure Security Center. What happens when you set the security policy to 'Free'?

  • A Real-time threat detection is enabled
  • B Limited features available for alerts
  • C Full compliance monitoring starts
  • D All Azure resources are automatically protected
Explanation The 'Free' setting provides limited alert and assessment features, while others imply more comprehensive functionalities.
Q127

Which service provides advanced threat protection for Azure resources?

  • A Azure Security Center
  • B Azure DevOps
  • C Azure Traffic Manager
  • D Azure VPN Gateway
Explanation Azure Security Center offers comprehensive threat detection and protection, while the others serve different purposes.
Q128

A company needs to monitor and analyze security incidents. Which Azure service is most appropriate?

  • A Azure Monitor
  • B Azure Sentinel
  • C Azure Data Lake
  • D Azure Blob Storage
Explanation Azure Sentinel provides intelligent security analytics and threat intelligence, while the others lack specific incident analysis features.
Q129

What happens when a role assignment in Azure RBAC is removed?

  • A User loses all access immediately
  • B User keeps access for 30 days
  • C User retains access until next login
  • D Access is revoked immediately
Explanation Access is revoked immediately upon removal of a role assignment, while the other options misinterpret role assignment policies.
Q130

Which service provides security for Azure applications in real-time?

  • A Azure Security Center
  • B Azure Key Vault
  • C Azure Application Gateway
  • D Azure Monitor
Explanation Azure Security Center monitors security in real-time, while others focus on access management, web traffic, or monitoring metrics.