Which of the following best describes the concept of data sovereignty?

Data, particularly personal data, is subject to the laws and regulations of the country/region in which it's physically collected, held, or processed.

There are regulations that govern the physical locations where data can be stored and how and when it can be transferred, processed, or accessed internationally.

What is a benefit of single sign-on?

The user signs in once and can then access many applications or resources.

A central identity provider can be used.

Passwords always expire after 72 days.

Authentication is the process of doing what?

Verifying that a user or device is who they say they are.

The process of tracking user behavior.

An organization has completed a full migration to the cloud and has purchased devices for all its employees. All employees sign in to the device through an organizational account configured in Microsoft Entra ID. Select the option that best describes how these devices are set up in Microsoft Entra ID.

These devices are set up as Microsoft Entra joined.

These devices are set up as Microsoft Entra registered.

These devices are set up as Microsoft Entra hybrid joined.

After hearing of a breach at a competitor, the security team wants to improve identity security within their organization. What should they implement to provide the greatest protection to user identities?

Require security questions for all sign-ins.

Require strong passwords for all identities.

Which of the following additional forms of verification can be used with Microsoft Entra multifactor authentication?

Microsoft Authenticator app, SMS, Voice call, FIDO2, and Windows Hello for Business

Security questions, SMS, Voice call, FIDO2, and Windows Hello for Business

Password spray, SMS, Voice call, FIDO2, and Windows Hello for Business

A company's IT organization has been asked to find ways to reduce IT costs, without compromising security. Which feature should they consider implementing?

Biometric sign-in on all devices.

An organization plans to implement Conditional Access. What do admins need to do?

Create policies that enforce organizational rules.

Check that all users have multi-factor authentication enabled.

Amend your apps to allow Conditional Access.

Sign-in risk is a signal used by Conditional Access policies to decide whether to grant or deny access. What is sign-in risk?

The probability that the authentication request isn't authorized by the identity owner.

The probability that the device is owned by the identity owner.

The probability that the user is authorized to view data from a particular application.

IT admins have been asked to review Microsoft Entra roles assigned to users, to improve organizational security. Which of the following should they implement?

Replace global admin roles with specific Microsoft Entra roles.

Remove all global admin roles assigned to users.

An organization has recently conducted a security audit and found that four people who have left were still active and assigned global admin roles. The users have now been deleted but the IT organization has been asked to recommend a solution to prevent a similar security lapse happening in future. Which solution should they recommend?

Privileged Identity Management.

Your IT organization is looking for a solution that provides comprehensive visibility and control over permissions for any identity and any resource in their multi-vendor cloud environment. Which Microsoft solution is best suited to address these needs?

Privileged Identity Management.

The security admin has created an Azure Network Security Group (NSG) to filter network traffic to a virtual machine. The admin wants to allow inbound traffic using the Remote Desktop Protocol (RDP), but the default NSG rules are currently blocking all inbound traffic that is not from another virtual network or an Azure load balancer. What does the security admin have to do to allow inbound traffic using RDP?

Create a new network security rule that allows RDP traffic and that has a higher priority than the default rule.

There's nothing the admin can do, RDP traffic isn't supported with NSGs.

The security admin wants to protect Azure resources from DDoS attacks and needs logging, alerting, and telemetry capabilities. which Azure service can provide these capabilities?

Default DDoS infrastructure protection.

An organization has several virtual machines in Azure. The security admin wants to deploy Azure Bastion to get secure access to those VMs. What should the admin keep in mind?

Azure Bastion is deployed per virtual network, with support for virtual network peering.

Azure Bastion is deployed per subscription.

Azure Bastion is deployed per virtual machine.

How can application developers benefit from using Azure Key Vault?

To securely store and retrieve application secrets

To register their application with Azure

To test and debug their application code.

Microsoft Defender for Cloud covers three pillars of cloud security. Which pillar provides visibility to help you understand your current security situation and provides hardening recommendations?

Cloud security posture management (CSPM)

Cloud workload protection (CWP)

Microsoft Cloud security benchmark

An organization wants to add vulnerability scanning for its Azure resources to view, investigate, and remediate the findings directly within Microsoft Defender for Cloud. What functionality of Microsoft Defender for Cloud would they need to consider?

The enhanced functionality that is provided through the Microsoft Defender plans and is part of the CWP pillar of Microsoft Defender for Cloud.

Secure score and recommendations functionality that are part of the CSPM pillar of Microsoft Defender for Cloud.

Which framework does Microsoft Defender for Cloud apply as a default initiative for security and compliance and provides best practices and recommendations to help improve the security of workloads, data, and services on Azure and your multicloud environment?

Microsoft Cloud security benchmark

The Center for Internet Security (CIS) framework

The National Institute of Standards and Technology (NIST) framework

Which capability allows you to manage your connected DevOps environments and provides your security teams with visibility to discovered issues within those environments?

The Defender for DevOps console

The Microsoft cloud security benchmark (MCSB)

As the lead admin, it's important to convince your team to start using Microsoft Sentinel. You’ve put together a presentation. What are the four security operation areas of Microsoft Sentinel?

Collect, Detect, Investigate, and Respond.

Collect, Detect, Investigate, and Redirect.

Collect, Detect, Investigate, and Repair.

A lead admin for an organization is looking to protect against malicious threats posed by email messages, links (URLs), and collaboration tools. Which solution from the Microsoft Defender XDR suite is best suited for this purpose?

Microsoft Defender for Office 365.

Microsoft Defender for Endpoint.

Microsoft Defender for Identity.

Which of the following is a cloud-based security solution that identifies, detects, and helps to investigate advanced threats, compromised identities, and malicious insider actions directed at your organization?

Microsoft Defender for Identity

Microsoft Defender for Office 365

Microsoft Defender for Cloud Apps

SC_900_Exam_Prep_Azhar

Authored by CloudThat Technologies

Computers

Professional Development

Used 4+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

49 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Statement: "The shared responsibility model makes responsibilities clear. When organizations move to the cloud, some responsibilities transfer to the cloud provider and some to the customer organization."
Select Yes if the statement is true. Otherwise, select No.

Yes

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Statement: "The goal of PaaS is to help you create an application quickly without managing the underlying infrastructure. With PaaS, the cloud provider manages the hardware and operating systems, and the customer is responsible for applications and data." Select Yes if the statement is true. Otherwise, select No.

Yes

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

The Zero Trust model operates on the principle of ?

trust all, verify everything

trust no one, verify everything

trust all, verify no one

trust few, verify everything

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Statement: "Governance is the process of identifying, assessing, and responding to threats or events that can impact company or customer objectives." Select Yes if the statement is true. Otherwise, select No.

Yes

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

An organization has deployed Microsoft 365 applications to all employees. Considering the shared responsibility model, who is responsible for the accounts and identities relating to these employees?

The organization.

Microsoft, the SaaS provider.

There's shared responsibility between an organization and Microsoft.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following measures might an organization implement as part of the defense in-depth security methodology?

Locating all its servers in a single physical location.

Multifactor authentication for all users.

Ensuring there's no segmentation of your corporate network.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

The human resources organization wants to ensure that stored employee data is encrypted. Which security mechanism would they use?

Hashing.

Encryption in transit.

Encryption at rest.

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

50 questions

CAMBRIDGE - A Level - IT - Networks

Quiz

•

12th Grade - Professi...

54 questions

HTML &CSS

Quiz

•

Professional Development

46 questions

Unit 18 - Design User Interface

Quiz

•

Professional Development

50 questions

Ethical Hacking

Quiz

•

Professional Development

50 questions

Employbility skills

Quiz

•

Professional Development

51 questions

AZ-900 Practice Test 3

Quiz

•

Professional Development

50 questions

Test Mendix 2

Quiz

•

Professional Development

54 questions

Randy's Networking Quiz 1

Quiz

•

Professional Development

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

10 questions

Probability Practice

Quiz

•

4th Grade

15 questions

Probability on Number LIne

Quiz

•

4th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

6 questions

Appropriate Chromebook Usage

Lesson

•

7th Grade

10 questions

Greek Bases tele and phon

Quiz

•

6th - 8th Grade

Discover more resources for Computers

20 questions

Black History Month Trivia Game #1

Quiz

•

Professional Development

20 questions

90s Cartoons

Quiz

•

Professional Development

12 questions

Mardi Gras Trivia

Quiz

•

Professional Development

7 questions

Copy of G5_U5_L14_22-23

Lesson

•

KG - Professional Dev...

12 questions

Unit 5: Puerto Rico W1

Quiz

•

Professional Development

42 questions

LOTE_SPN2 5WEEK2 Day 4 We They Actividad 3

Quiz

•

Professional Development

15 questions

Balance Equations Hangers

Quiz

•

Professional Development

31 questions

Servsafe Food Manager Practice Test 2021- Part 1

Quiz

•

9th Grade - Professio...

SC_900_Exam_Prep_Azhar

Statement: "The shared responsibility model makes responsibilities clear. When organizations move to the cloud, some responsibilities transfer to the cloud provider and some to the customer organization."
Select Yes if the statement is true. Otherwise, select No.

The Zero Trust model operates on the principle of ?

Statement: "Governance is the process of identifying, assessing, and responding to threats or events that can impact company or customer objectives." Select Yes if the statement is true. Otherwise, select No.

An organization has deployed Microsoft 365 applications to all employees. Considering the shared responsibility model, who is responsible for the accounts and identities relating to these employees?

Which of the following measures might an organization implement as part of the defense in-depth security methodology?

The human resources organization wants to ensure that stored employee data is encrypted. Which security mechanism would they use?

Which of the following best describes the concept of data sovereignty?

Statement: "Authorization is the process of proving that a person is who they say they are." Select Yes if the statement is true. Otherwise, select No.

Statement: "Modern authentication is an umbrella term for authentication and authorization methods between a client, such as your laptop or phone, and a server, like a website or application." Select Yes if the statement is true. Otherwise, select No.

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

SC_900_Exam_Prep_Azhar

Statement: "The shared responsibility model makes responsibilities clear. When organizations move to the cloud, some responsibilities transfer to the cloud provider and some to the customer organization." Select Yes if the statement is true. Otherwise, select No.

The Zero Trust model operates on the principle of ?

Statement: "Governance is the process of identifying, assessing, and responding to threats or events that can impact company or customer objectives." Select Yes if the statement is true. Otherwise, select No.

An organization has deployed Microsoft 365 applications to all employees. Considering the shared responsibility model, who is responsible for the accounts and identities relating to these employees?

Which of the following measures might an organization implement as part of the defense in-depth security methodology?

The human resources organization wants to ensure that stored employee data is encrypted. Which security mechanism would they use?

Which of the following best describes the concept of data sovereignty?

Statement: "Authorization is the process of proving that a person is who they say they are." Select Yes if the statement is true. Otherwise, select No.

Statement: "Modern authentication is an umbrella term for authentication and authorization methods between a client, such as your laptop or phone, and a server, like a website or application." Select Yes if the statement is true. Otherwise, select No.

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

Statement: "The shared responsibility model makes responsibilities clear. When organizations move to the cloud, some responsibilities transfer to the cloud provider and some to the customer organization."
Select Yes if the statement is true. Otherwise, select No.