Design security solutions for infrastructure Questions
Practice questions for Design security solutions for infrastructure topic in Microsoft Certified: Cybersecurity Architect Expert. 52 questions covering this domain.
Which Microsoft service is the primary platform for evaluating and improving cloud security posture across Azure, hybrid, and multicloud environments?
An architect is asked to design secure access to Microsoft 365 internet traffic for multiple business units, including cross-tenant scenarios. Which M...
A Zero Trust network design must provide identity-based access to private applications without relying on broad network exposure. Which Microsoft serv...
A hybrid security design must apply Azure governance and posture controls consistently to non-Azure servers. Which combination best supports that goal...
A company wants one security posture design that spans Azure, AWS, and GCP while also selecting workload protections and mapping to the Microsoft clou...
A security architect wants to discover and monitor externally exposed internet-facing assets that might expand organizational attack surface. Which Mi...
Which Microsoft service extends Azure management and governance to on-premises and multicloud servers?
A platform team needs baseline security requirements for containerized workloads and container orchestration. Which Microsoft cloud protection area is...
Which Microsoft metric helps evaluate an organization's overall security posture and recommended improvements?
A company wants a secure web gateway capability delivered through Microsoft Entra for internet-bound traffic. Which service should the architect evalu...
A company wants to visualize likely attacker movement through its estate and prioritize mitigations based on connected exposure paths. Which Microsoft...
A security review finds disconnected posture processes, no risk prioritization, and poor visibility into security initiatives across a hybrid estate. ...
A manufacturing company needs Microsoft protection for operational technology and industrial control systems. Which product should be part of the desi...
An architect must secure local administrator passwords on Windows endpoints through rotation and controlled access. Which Microsoft solution should be...
A team manages Linux servers across Azure, on-prem, and AWS. They want unified update management and configuration assessment. Which combination is do...
An architect must design RDP/SSH access to Azure VMs without exposing public IPs. Which service is recommended?
An organization runs critical OT in factory floors and needs threat detection that doesn't disrupt PLCs. Which Microsoft solution is documented?
An architect must protect Azure Storage from anonymous access, malware uploads, and exfiltration to/from sensitive blob containers. Which combination ...
An organization must reduce attack paths by limiting east-west VM traffic to only required ports. Which approach is recommended?
Which Azure capability provides centralized firewall-as-a-service with threat intelligence-based filtering and TLS inspection?
Sign in to see all 52 questions
Create a free account to browse all questions — completely free during our launch phase.