Design security solutions for applications and data Questions
Practice questions for Design security solutions for applications and data topic in Microsoft Certified: Cybersecurity Architect Expert. 45 questions covering this domain.
An architect is reviewing a business-critical application portfolio and needs a structured way to identify likely threats before choosing controls. Wh...
Which Microsoft service catalogs and classifies data assets for discovery and governance scenarios?
A Microsoft 365 security design must combine SaaS risk visibility, shadow IT discovery, and adaptive control over cloud app usage. Which product shoul...
A data platform stores information across Azure Storage, Azure SQL, Synapse Analytics, and Azure Cosmos DB. The architect must propose one cohesive se...
A team plans to secure an API estate and wants centralized publishing, access governance, and protection controls aligned to application security requ...
Which Microsoft product should be evaluated for protecting email and collaboration workloads in Microsoft 365?
A team wants Azure-hosted applications to authenticate to Azure resources without storing credentials in code. Which design should be used?
Which Microsoft product is used for device management and compliance controls in Microsoft 365 security designs?
A web application must be protected against common web attack patterns while still allowing organization-specific blocking logic. Which design best fi...
A compliance team asks how to secure data in Microsoft 365 and apply classification and protection controls across documents and emails. Which Microso...
An architect needs centralized management of cryptographic keys with support for customer-controlled keys and key rotation. Which Azure service should...
Which approach is documented for protecting an Azure App Service web app from common L7 attacks while still allowing custom rules?
An architect wants AI-aware data security and posture for generative AI applications using sensitive data. Which Microsoft Purview capability is docum...
A team wants to scan Azure DevOps and GitHub repos for secret leaks and code vulnerabilities, integrated with Defender for Cloud. Which capability is ...
An architect must protect Azure SQL data so DBAs can't view PII in plaintext. Which feature should be used?
Which Azure feature lets developers retrieve secrets, keys, and certificates from Azure Key Vault using a workload identity without storing credential...
An organization wants its developers to consume secrets and certificates from Azure Key Vault with regular rotation and audit. Which design is recomme...
Which Microsoft Purview capability detects and prevents unauthorized sharing of sensitive data across endpoints, M365 apps, and cloud services?
Which Microsoft Purview capability classifies, labels, and protects sensitive content (e.g., credit card data) across Microsoft 365 and beyond?
A team designs an API estate that needs centralized authentication, throttling, transformation, and OAuth-protected access. Which Azure service should...
Sign in to see all 45 questions
Create a free account to browse all questions — completely free during our launch phase.