Quiz about SC-200

Question 1

You need to receive a security alert when a user attempts to sign in from a location that was never used by the other users in your organization to sign in.Which anomaly detection policy should you use?

Accepted Answer

Activity from infrequent country

Answer

Impossible travel

Answer

Activity from anonymous IP addresses

Answer

Malware detection

Question 2

This question is part of a series of questions that present the same scenario. Each question in the series contains a unique solution that might meet the stated goals. Some question sets might have more than one correct solution, while others might not have a correct solution.After you answer a question in this section, you will NOT be able to return to it. As a result, these questions will not appear in the review screen.You are configuring Microsoft Defender for Identity integration with Active Directory.From the Microsoft Defender for identity portal, you need to configure several accounts for attackers to exploit.Solution: From Entity tags, you add the accounts as Honeytoken accounts.Does this meet the goal?

Accepted Answer

Yes

Answer

No

Question 3

What does the search operator do?

Accepted Answer

Searches across tables and isn't column-specific.

Answer

Searches only data in the last hour.

Answer

Searches in columns specified.

Question 4

What are project operators?

Accepted Answer

Project operators add, remove, or rename columns in a result set.

Answer

Project operators filter a table to the subset of rows that satisfy a predicate.

Answer

Project operators create summarized columns and append them to the result set.

Question 5

You can classify an Incident as which of the following?

Accepted Answer

True alert

Answer

High alert

Answer

Test alert

Question 6

What describes Safe Attachments from Microsoft Defender for Office 365?

Accepted Answer

Messages and attachments are routed to a special environment where Microsoft Defender for Office 365 uses a variety of machine learning and analysis techniques to detect malicious intent.

Answer

Protects your users from malicious URLs in a message or in an Office document.

Answer

A powerful report that enables your Security Operations team to investigate and respond to threats effectively and efficiently.

Question 7

How can you ensure that a file is sent into quarantine for review by an administrator?

Accepted Answer

When creating a file policy, select Put in admin quarantine

Answer

When creating a file policy, select Quarantine for admin

Answer

When creating a file policy, select Put in review for admin

Question 8

Your company has a single office in Istanbul and a Microsoft 365 subscription.The company plans to use conditional access policies to enforce multi-factor authentication (MFA).You need to enforce MFA for all users who work remotely.What should you include in the solution?

Accepted Answer

a named location

Answer

a fraud alert

Answer

a user risk policy

Answer

a sign-in user policy

Question 9

You create an Azure subscription named sub1.In sub1, you create a Log Analytics workspace named workspace1.You enable Azure Security Center and configure Security Center to use workspace1.You need to collect security event logs from the Azure virtual machines that report to workspace1.What should you do?

Accepted Answer

From Security Center, enable data collection

Answer

In sub1, register a provider.

Answer

From Security Center, create a Workflow automation.

Answer

In workspace1, create a workbook.

Question 10

You create an Azure subscription. You enable Azure Defender for the subscription. You need to use Azure Defender to protect on-premises computers. What should you do on the on-premises computers?

Accepted Answer

A Install the Log Analytics agent.

Answer

nstall the Dependency agent.

Answer

Configure the Hybrid Runbook Worker role.

Answer

Install the Connected Machine agent.

SC-200

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Science