HOTSPOT -
To complete the sentence, select the appropriate option in the answer area.
Hot Area:

Discover Answer Hide Answer

Answer:
Reference:
https://docs.microsoft.com/en-us/azure/firewall/tutorial-firewall-dnat-policy

HOTSPOT -
To complete the sentence, select the appropriate option in the answer area.
Hot Area:

Discover Answer Hide Answer

Answer:
Reference:
https://docs.microsoft.com/en-us/azure/ddos-protection/ddos-protection-overview

You have an Azure Sentinel workspace.
You need to automate responses to threats detected by Azure Sentinel.
What should you use?

Discover Answer Hide Answer

Answer: C

DRAG DROP -
Match the Azure services benefits to the correct descriptions.
Instructions: To answer, drag the appropriate benefit from the column on the left to its description on the right. Each benefit may be used once, more than once, or not at all.
NOTE: Each correct match is worth one point.
Select and Place:

Discover Answer Hide Answer

Answer:
Box 1: Microsoft Sentinel -
Microsoft Sentinel is a scalable, cloud-native, security information and event management (SIEM) and security orchestration, automation, and response (SOAR) solution. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for attack detection, threat visibility, proactive hunting, and threat response.
Box 2: Microsoft Defender for Cloud
You can find your overall secure score, as well as your score per subscription, through the Azure portal. Defender for Cloud displays your secure score prominently in the portal.

Box 3: Azure Key Vault -
A favored approach to store the credentials or keys in the Azure Key Vault as secrets and reference the secrets as environment variables in our Azure functions apps.
Reference:
https://docs.microsoft.com/en-us/azure/sentinel/overview
https://docs.microsoft.com/en-us/azure/defender-for-cloud/secure-score-access-and-track https://levelup.gitconnected.com/a-secure-way-to-use-credentials-and-secrets-in-azure-functions-7ec91813c807

Which Azure service can you use as a security information and event management (SIEM) solution?

Discover Answer Hide Answer

Answer: B
Microsoft Sentinel is a scalable, cloud-native, security information and event management (SIEM) and security orchestration, automation, and response (SOAR) solution. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for attack detection, threat visibility, proactive hunting, and threat response.
Reference:
https://docs.microsoft.com/en-us/azure/sentinel/overview

HOTSPOT -
Select the answer that correctly completes the sentence.
Hot Area:

Discover Answer Hide Answer

Answer:
Box: collection of policy definitions
An Azure Policy initiative is a collection of Azure Policy definitions, or rules, that are grouped together towards a specific goal or purpose. Azure initiatives simplify management of your policies by grouping a set of policies together, logically, as a single item.
Reference:
https://docs.microsoft.com/en-us/azure/defender-for-cloud/security-policy-concept

You have an Azure subscription.
You need to review your secure score.
What should you use?

Discover Answer Hide Answer

Answer: D
The central feature in Defender for Cloud that enables you to achieve those goals is secure score.
Reference:
https://docs.microsoft.com/en-us/azure/defender-for-cloud/secure-score-security-controls

HOTSPOT -
Select the answer that correctly completes the sentence.
Hot Area:

Discover Answer Hide Answer

Answer:
Box: Microsoft Defender for Cloud
Lock down inbound traffic to your Azure Virtual Machines with Microsoft Defender for Cloud's just-in-time (JIT) virtual machine (VM) access feature. This reduces exposure to attacks while providing easy access when you need to connect to a VM.
Reference:
https://docs.microsoft.com/en-us/azure/defender-for-cloud/just-in-time-access-usage

HOTSPOT -
Select the answer that correctly completes the sentence.
Hot Area:

Discover Answer Hide Answer

Answer:
Box: Microsoft Defender for Cloud
Microsoft Defender for Cloud helps streamline the process for meeting regulatory compliance requirements, using the regulatory compliance dashboard.
You can download PDF/CSV reports as well as certification reports of your compliance status.
Reference:
https://docs.microsoft.com/en-us/azure/defender-for-cloud/regulatory-compliance-dashboard

You need to collect and automatically analyze security events from Azure Active Directory (Azure AD).
What should you use?

Discover Answer Hide Answer

Answer: A
Microsoft Sentinel is a scalable, cloud-native, security information and event management (SIEM) and security orchestration, automation, and response (SOAR) solution.
Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for attack detection, threat visibility, proactive hunting, and threat response.
Reference:
https://docs.microsoft.com/en-us/azure/sentinel/overview