Microsoft SC-100 Exam Actual Questions

Name: Microsoft Cybersecurity Architect
Brand: QA4Exam
SKU: SC-100
Price: 30 USD
Availability: InStock
Rating: 5.0 (130 reviews)

The questions for SC-100 were last updated on Oct 4, 2024.

Viewing page 1 out of 35 pages.
Viewing questions 1-5 out of 176 questions

Unlock Access to All 176 Questions & Answers

Question No. 1

You design cloud-based software as a service (SaaS) solutions.

You need to recommend ransomware attacks. The solution must follow Microsoft Security Best Practices.

What should you recommend doing first?

AImplement data protection.

BDevelop a privileged access strategy.

CPrepare a recovery plan.

DDevelop a privileged identity strategy.

Show Answer

Correct Answer: C

Question No. 2

You have legacy operational technology (OT) devices and loT devices.

You need to recommend best practices for applying Zero Trust principles to the OT and loT devices based on the Microsoft Cybersecurity Reference Architectures (MCRA). The solution must minimize the risk of disrupting business operations.

Which two security methodologies should you include in the recommendation? Each correct answer presents part of the solution.

NOTE: Each correct selection is worth one point

Apassive traffic monitoring

Bactive scanning

Cthreat monitoring

Dsoftware patching

Show Answer

Correct Answer: C, D

Question No. 3

You have an Azure subscription. The subscription contains 100 virtual machines that run Windows Server. The virtual machines are managed by using Azure Policy and Microsoft Defender for Servers.

You need to enhance security on the virtual machines. The solution must meet the following requirements:

* Ensure that only apps on an allowlist can be run.

* Require administrators to confirm each app added to the allowlist.

* Automatically add unauthorized apps to a blocklist when an attempt is made to launch the app.

* Require administrators to approve an app before the app can be moved from the blocklist to the allowlist.

What should you include in the solution?

Aa compute policy in Azure Policy

Badmin consent settings for enterprise applications in Azure AD

Cadaptive application controls in Defender for Servers

Dapp governance in Microsoft Defender for Cloud Apps

Show Answer

Correct Answer: C

Question No. 4

You have an Azure subscription. The subscription contains 50 virtual machines that run Windows Server and 50 virtual machines that run Linux. You need to perform vulnerability assessments on the virtual machines. The solution must meet the following requirements:

* Identify missing updates and insecure configurations.

* Use the Qualys engine.

What should you use?

AMicrosoft Defender for Servers

BMicrosoft Defender Threat Intelligence (Defender Tl)

CMicrosoft Defender for Endpoint

DMicrosoft Defender External Attack Surface Management (Defender EASM)

Show Answer

Correct Answer: A

Question No. 5

Note: This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.

After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.

You are designing the encryption standards for data at rest for an Azure resource.

You need to provide recommendations to ensure that the data at rest is encrypted by using AES-256 keys. The solution must support rotating the encryption keys monthly.

Solution: For Azure SQL databases, you recommend Transparent Data Encryption (TDE) that uses Microsoft-managed keys.

Does this meet the goal?

AYes

BNo

Show Answer

Correct Answer: B

Unlock All Questions for Microsoft SC-100 Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 176 Questions & Answers