Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel Questions
Practice questions for Secure Azure using Microsoft Defender for Cloud and Microsoft Sentinel topic in Microsoft Certified: Azure Security Engineer Associate. 68 questions covering this domain.
After you disable public access on an Azure Key Vault, how can clients reach the vault?
In a scheduled Microsoft Sentinel analytics rule, which relationship between the query interval and the lookback period is valid?
A company still uses the Key Vault access policy model. Why does Microsoft recommend moving to Azure RBAC for Key Vault data plane access?
What platform are Microsoft Sentinel playbooks built on?
A SOC team wants to correlate its own list of high-value assets and terminated employees with ingested security events in Microsoft Sentinel. Which fe...
Your team is planning its long-term Microsoft Sentinel portal strategy. According to Microsoft guidance, when will Microsoft Sentinel no longer be sup...
A policy assignment uses the deployIfNotExists effect to add a missing diagnostic setting to existing resources. What additional requirement must be s...
Which built-in Azure role is recommended to manage Key Vault key rotation policies when using Azure RBAC?
Which Defender for Cloud capability summarizes your organization's security posture based on recommendations?
A security architect wants to use Cloud Security Explorer and attack path analysis in Defender for Cloud. Which plan is required?
A subscription administrator can enable or disable Defender for Cloud plans, but some plan capabilities still cannot be fully turned on. Which role is...
Which Defender for Cloud role can view recommendations, alerts, and policies but cannot make changes?
A custom scheduled analytics rule in Microsoft Sentinel returns zero results even though matching events exist in the workspace. The rule query omits ...
A security team wants to understand the effect of a new Azure Policy before it starts blocking deployments. Which effect should be used first?
Your SOC wants ready-made data connectors, analytics, and monitoring content for Microsoft Sentinel. Where should analysts start?
Which Defender for Cloud plan provides protections such as just-in-time VM access, file integrity monitoring, and advanced server defenses?
A Key Vault firewall is enabled and a user can browse to the vault in the Azure portal but can't list secrets. What best explains this behavior?
For Azure Key Vault data plane authorization, which access model does Microsoft recommend?
Which Defender for Cloud plan provides agentless vulnerability assessment for container images stored in Azure Container Registry?
Microsoft Sentinel ingests logs into which underlying Azure service?
Sign in to see all 68 questions
Create a free account to browse all questions — completely free during our launch phase.