AZ-500 Final quiz GSI

You are a security engineer for a company that uses Azure Storage accounts to store sensitive data. You need to ensure that data is encrypted at rest and in transit. Which of the following actions should you take? (Choose two)

Your organization wants to implement Azure AD Privileged Identity Management (PIM) to manage and monitor privileged roles. Which of the following features does PIM provide? (Choose three)

You need to configure Azure Firewall to control outbound traffic from your virtual network to the internet. Which of the following steps should you take? (Choose two)

Your company wants to use Azure Security Center to improve its security posture. Which of the following features does Azure Security Center provide? (Choose three)

You are responsible for managing secrets and certificates in Azure Key Vault. Which of the following actions can you perform with Azure Key Vault? (Choose two)

Your organization is concerned about potential DDoS attacks on its web applications. Which of the following steps should you take to configure Azure DDoS Protection? (Choose two)

You need to implement conditional access policies to secure access to your company's resources. Which of the following conditions can you configure in a conditional access policy? (Choose three)

Your company wants to use Azure Sentinel for security information and event management (SIEM). Which of the following features does Azure Sentinel provide? (Choose three)

You need to manage role-based access control (RBAC) in your Azure environment. Which of the following actions can you perform with Azure RBAC? (Choose two)

Your organization wants to enforce compliance with company policies in Azure. Which of the following actions can you perform with Azure Policy? (Choose two)