{"id":6234,"date":"2024-11-02T10:19:44","date_gmt":"2024-11-02T02:19:44","guid":{"rendered":"http:\/\/www.killtest.hk\/?p=6234"},"modified":"2024-11-02T10:19:44","modified_gmt":"2024-11-02T02:19:44","slug":"%e5%be%ae%e8%bb%9f%e8%aa%8d%e8%ad%89%e8%80%83%e8%a9%a6-sc-100-microsoft-%e8%b3%87%e8%a8%8a%e4%bf%9d%e8%ad%b7%e7%ae%a1%e7%90%86%e5%93%a1%e7%9c%9f%e9%a1%8c%e6%af%8f%e6%97%a5%e4%b8%80%e7%b7%b4","status":"publish","type":"post","link":"https:\/\/www.killtest.hk\/index.php\/killtest\/%e5%be%ae%e8%bb%9f%e8%aa%8d%e8%ad%89%e8%80%83%e8%a9%a6-sc-100-microsoft-%e8%b3%87%e8%a8%8a%e4%bf%9d%e8%ad%b7%e7%ae%a1%e7%90%86%e5%93%a1%e7%9c%9f%e9%a1%8c%e6%af%8f%e6%97%a5%e4%b8%80%e7%b7%b4\/","title":{"rendered":"\u5fae\u8edf\u8a8d\u8b49\u8003\u8a66 SC-100: Microsoft \u8cc7\u8a0a\u4fdd\u8b77\u7ba1\u7406\u54e1\u771f\u984c\u6bcf\u65e5\u4e00\u7df4"},"content":{"rendered":"

SC-100:Microsoft Cybersecurity Architect<\/a>\u771f\u9898\u7ec3\u4e60
\n1.Your company has a Microsoft 365 ES subscription.The Chief Compliance Ocer plans to enhance privacy management in the working environment.
\nYou need to recommend a solution to enhance the privacy management. The solution must meet the following requirements:
\n\u2711 Identify unused personal data and empower users to make smart data handling decisions.
\n\u2711 Provide users with notications and guidance when a user sends personal data in Microsoft Teams.
\n\u2711 Provide users with recommendations to mitigate privacy risks.What should you include in the recommendation?
\nA. communication compliance in insider risk management\u00a0
\nB. Microsoft Viva Insights
\nC. Privacy Risk Management in Microsoft Priva
\nD. Advanced eDiscovery
\n\u7b54\u6848\uff1aC<\/p>\n

2.You have an Azure subscription that has Microsoft Defender for Cloud enabled.Suspicious authentication activity alerts have been appearing in the Workload protections dashboard.
\nYou need to recommend a solution to evaluate and remediate the alerts by using workow automation. The solution must minimize development effort.What should you include in the recommendation?
\nA. Azure Monitor webhooks\u00a0
\nB. Azure Event Hubs
\nC. Azure Functions apps
\nD. Azure Logics Apps
\n\u7b54\u6848\uff1aD<\/p>\n

3.Your company is moving a big data solution to Azure.The company plans to use the following storage workloads:\u00a0
\n\u2711 Azure Storage blob containers
\n\u2711 Azure Data Lake Storage Gen2Azure Storage le shares –
\n\u2711 Azure Disk StorageWhich two storage workloads support authentication by using Azure Active Directory (Azure AD)?
\nEach correct answer presents a complete solution.NOTE: Each correct selection is worth one point.
\nA. Azure Storage le shares\u00a0
\nB. Azure Disk Storage
\nC. Azure Storage blob containers
\nD. Azure Data Lake Storage Gen2
\n\u7b54\u6848\uff1aCD<\/p>\n

4.You have a Microsoft 365 E5 subscription and an Azure subscription.You are designing a Microsoft deployment.You need to recommend a solution for the security operations team. The solution must include custom views and a dashboard for analyzing security events.What should you recommend using in Microsoft Sentinel?
\nA. notebooks\u00a0
\nB. playbooks
\nC. workbooks
\nD. threat intelligence
\n\u7b54\u6848\uff1aC<\/p>\n

5.Your company has a Microsoft 365 subscription and uses Microsoft Defender for Identity.You are informed about incidents that relate to compromised identities.
\nYou need to recommend a solution to expose several accounts for attackers to exploit. When the attackers attempt to exploit the accounts, an alert must be triggered.Which Defender for Identity feature should you include in the recommendation?
\nA. sensitivity labels
\nB. custom user tags\u00a0
\nC. standalone sensors
\nD. honeytoken entity tags
\n\u7b54\u6848\uff1aD<\/p>\n

6.You have an Azure subscription that contains virtual machines, storage accounts, and Azure SQL databases.All resources are backed up multiple times a day by using Azure Backup.You are developing a strategy to protect against ransomware attacks.
\nYou need to recommend which controls must be enabled to ensure that Azure Backup can be used to restore the resources in the event of a successful ransomware attack.
\nWhich two controls should you include in the recommendation? Each correct answer presents a complete solution.
\nNOTE: Each correct selection is worth one point.
\nA. Enable soft delete for backups. Most Voted
\nB. Require PINs for critical operations.
\nC. Encrypt backups by using customer-managed keys (CMKs).\u00a0
\nD. Perform oine backups to Azure Data Box.
\nE. Use Azure Monitor notications when backup congurations change.
\n\u7b54\u6848\uff1aBE<\/p>\n

7.Your company has a third-party security information and event management (SIEM) solution that uses Splunk and Microsoft Sentinel.
\nYou plan to integrate Microsoft Sentinel with Splunk.
\nYou need to recommend a solution to send security events from Microsoft Sentinel to Splunk.What should you include in the recommendation?\u00a0
\nA. a Microsoft Sentinel data connector
\nB. Azure Event Hubs Most Voted
\nC. a Microsoft Sentinel workbook\u00a0
\nD. Azure Data Factory
\n\u7b54\u6848\uff1aA<\/p>\n

8.A customer follows the Zero Trust model and explicitly veries each attempt to access its corporate applications.
\nThe customer discovers that several endpoints are infected with malware.The customer suspends access attempts from the infected endpoints.
\nThe malware is removed from the endpoints.Which two conditions must be met before endpoint users can access the corporate applications again?
\nEach correct answer presents part of the solution.
\nNOTE: Each correct selection is worth one point.
\nA. The client access tokens are refreshed
\nB. Microsoft Intune reports the endpoints as compliant. Most Voted
\nC. A new Azure Active Directory (Azure AD) Conditional Access policy is enforced
\nD.Microsoft Defender for Endpoint reports the endpoints as compliant.
\n\u7b54\u6848\uff1aAC<\/p>\n

9.You have a customer that has a Microsoft 365 subscription and uses the Free edition of Azure Active Directory (Azure AD).
\nThe customer plans to obtain an Azure subscription and provision several Azure resources.
\nYou need to evaluate the customer’s security environment.What will necessitate an upgrade from the Azure AD Free edition to the Premium edition?
\nA. Azure AD Privileged Identity Management (PIM) Most Voted\u00a0
\nB. role-based authorization
\nC. resource-based authorization
\nD. Azure AD Multi-Factor Authentication
\n\u7b54\u6848\uff1aD<\/p>\n

10.You are designing the security standards for a new Azure environment.You need to design a privileged identity strategy based on the Zero Trust model.
\nWhich framework should you follow to create the design?
\nA. Microsoft Security Development Lifecycle (SDL)\u00a0
\nB. Enhanced Security Admin Environment (ESAE)
\nC. Rapid Modernization Plan (RaMP)
\nD. Microsoft Operational Security Assurance (OSA)
\n\u7b54\u6848\uff1aC<\/p>\n

11.A customer has a hybrid cloud infrastructure that contains a Microsoft 365 E5 subscription and an Azure subscription.
\nAll on-premises servers in the perimeter network are prevented from connecting directly to the internet.
\nThe customer recently recovered from a ransomware attack.
\nThe customer plans to deploy Microsoft Sentinel.You need to recommend solutions to meet the following requirements:
\n\u2711 Ensure that the security operations team can access the security logs and the operation logs.
\n\u2711 Ensure that the IT operations team can access only the operations logs, including the event logs of the servers in the perimeter network.
\nWhich two solutions should you include in the recommendation? Each correct answer presents a complete solution.
\nNOTE: Each correct selection is worth one point.
\nA. a custom collector that uses the Log Analytics agent
\nB. the Azure Monitor agent
\nC. resource-based role-based access control (RBAC)
\nD. Azure Active Directory (Azure AD) Conditional Access policies
\n\u7b54\u6848\uff1aBC<\/p>\n","protected":false},"excerpt":{"rendered":"

SC-100:Microsoft Cybersecurity Architect\u771f\u9898\u7ec3\u4e60 1.Your com […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[3527],"class_list":["post-6234","post","type-post","status-publish","format-standard","hentry","category-killtest","tag-sc-100"],"_links":{"self":[{"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/posts\/6234","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/comments?post=6234"}],"version-history":[{"count":1,"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/posts\/6234\/revisions"}],"predecessor-version":[{"id":6235,"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/posts\/6234\/revisions\/6235"}],"wp:attachment":[{"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/media?parent=6234"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/categories?post=6234"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.killtest.hk\/index.php\/wp-json\/wp\/v2\/tags?post=6234"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}