Browse Exams Pricing

ExamsSC-100Questions

SC-100 Exam Questions

236 real SC-100 exam questions with expert-verified answers and explanations. Page 3 of 5.

Question #130Design security operations, identity, and compliance capabilities
Your company has an Azure subscription that has enhanced security enabled for Microsoft Defender for Cloud. The company signs a contract with the United States government. You need...
Azure PolicyRegulatory ComplianceNIST 800-53Microsoft Defender for Cloud
Question #132Design security operations, identity, and compliance capabilities
For a Microsoft cloud environment, you are designing a security architecture based on the Microsoft Cloud Security Benchmark. What are three best practices for identity management...
Identity ManagementAzure Security BenchmarkSecurity Best PracticesSecurity Architecture Design
Question #133Design solutions that align with security best practices and priorities
Your company plans to follow DevSecOps best practices of the Microsoft Cloud Adoption Framework for Azure. You need to perform threat modeling by using a top-down approach based on...
Threat ModelingSTRIDE ModelDevSecOpsCloud Adoption Framework
Question #134Design security solutions for applications and data
Your company has on-premises Microsoft SQL Server databases. The company plans to move the databases to Azure. You need to recommend a secure architecture for the databases that wi...
Azure SQL DatabaseDatabase migrationData maskingPaaS database
Question #135Design security operations, identity, and compliance capabilities
Drag and Drop Question Your company wants to optimize ransomware incident investigations. You need to recommend a plan to investigate ransomware incidents based on the Microsoft De...
Ransomware Incident ResponseMicrosoft DARTSecurity OperationsIncident Management
Question #136Design security operations, identity, and compliance capabilities
You have a Microsoft 365 subscription that syncs with Active Directory Domain Services (AD DS). You need to define the recovery steps for a ransomware attack that encrypted data in...
Ransomware RecoveryIncident ResponseMicrosoft 365 SecurityContainment
Question #137Design security solutions for infrastructure
You have a Microsoft 365 subscription and an Azure subscription. Microsoft 365 Defender and Microsoft Defender for Cloud are enabled. The Azure subscription contains 50 virtual mac...
Application ControlMicrosoft Defender for EndpointVirtual Machine SecurityEndpoint Security
Question #138Design security operations, identity, and compliance capabilities
Your company is developing an invoicing application that will use Azure AD B2C. The application will be deployed as an App Service web app. You need to recommend a solution to the...
Azure AD B2CConditional AccessAccount SecurityIdentity Protection
Question #139Design security operations, identity, and compliance capabilities
You are a security analyst for an organization. Your company recently initiated a cloud adoption strategy and concerns related to threat detection in Azure Container Registry for t...
Container SecurityAzure Container RegistryMicrosoft Defender for CloudVulnerability Scanning
Question #140Design security operations, identity, and compliance capabilities
You are a security architect for a company with Microsoft Azure and Microsoft 365 subscriptions, and you recently had a ransomware attack. After reviewing with the team, you found...
Microsoft SentinelSIEMSecurity OperationsIncident Response
Question #141Design security operations, identity, and compliance capabilities
You are a security architect in an organization. The chief compliance officer has tasked you to ensure that all new Azure core services are HIPAA compliant. What operation complian...
Azure BlueprintsCompliance AutomationHIPAA ComplianceDeployment Management
Question #142Design security operations, identity, and compliance capabilities
You are a security engineer tasked with finding a solution that would help improve personal data protection for the organization. The Chief Information Officer Has identified three...
Privacy Risk ManagementData ProtectionMicrosoft PrivaData Exposure
Question #143Design security operations, identity, and compliance capabilities
You are a cloud security engineer, and you recently Enabled Microsoft Defender for Cloud on your Azure Subscription. You would like to remedy minor security alerts automatically. W...
Microsoft Defender for CloudSecurity AutomationAzure Logic AppsAutomated Remediation
Question #144Design security solutions for applications and data
Your company is exploring migrating data into Azure; they would like to have a central authentication solution when accessing the data; they have chosen Azure Active Directory. Whi...
Azure Active DirectoryStorage SecurityAuthenticationData Security
Question #145Design security operations, identity, and compliance capabilities
You are in charge of a security operation center team; you recently implemented Microsoft Sentinel. The members of the Security Operation Center team have requested the creation of...
Microsoft SentinelWorkbooksSecurity MonitoringDashboards
Question #146Design security operations, identity, and compliance capabilities
You are a security administrator for Microsoft 365; you implemented Microsoft Defender for Identity You have created several test accounts with specific configurations for the purp...
Microsoft Defender for IdentityHoneytokensIdentity securityVulnerability management
Question #147Design security solutions for applications and data
Your organization is in the process of moving its on-premises VMs into Azure; you're using Azure Backup to protect these VMs. The Chief Information Officer is concerned about ranso...
Azure BackupRansomware ProtectionData ProtectionSecurity Controls
Question #148Design security operations, identity, and compliance capabilities
You are a cloud security administrator, and you have been tasked with providing a security solution for an Azure App Service, a web app named web-App0. Web-App0 has the following r...
Azure AD AuthenticationAzure App ServiceApplication Registration
Question #149Design security solutions for applications and data
You are a security architect, and you are working with your software development team and defining a strategy for an application lifecycle management process, This process is based...
Microsoft SDLThreat ModelingApplication Security LifecycleSecurity Architecture
Question #150Design security solutions for applications and data
You are an Azure solution architect; your organization has an on-premises Microsoft SQL server. You recently deployed an Azure App Service with a web app; the web app is required t...
Azure App ServiceHybrid ConnectionsOn-premises integrationSecure data access
Question #151Design security operations, identity, and compliance capabilities
When developing a security operations life cycle for managing threats, what is done at the threat analytics stage?
Security Operations Life CycleThreat AnalyticsThreat Intelligence
Question #152Design security solutions for infrastructure
What does Microsoft provide in Azure to all customers to protect the perimeter of the Azure infrastructure?
Azure infrastructure securityDDoS protectionPlatform securityShared responsibility model
Question #153Design solutions that align with security best practices and priorities
What measures the percentage of loss of an asset when doing a risk analysis?
Risk AnalysisExposure FactorSecurity Concepts
Question #154Design security operations, identity, and compliance capabilities
You have an on-premises network and a Microsoft 365 subscription. You are designing a Zero Trust security strategy. Which two security controls should you include as part of the Ze...
Zero TrustConditional AccessIdentity ProtectionDevice Compliance
Question #155Design security operations, identity, and compliance capabilities
You have an Azure subscription. Your company has a governance requirement that resources must be created in the West Europe or North Europe Azure regions. What should you recommend...
Azure PolicyGovernanceRegion restrictionsCompliance enforcement
Question #156Design solutions that align with security best practices and priorities
You are designing a new Azure environment based on the security best practices of the Microsoft Cloud Adoption Framework for Azure. The environment will contain one subscription fo...
Azure Landing ZonesCloud Adoption FrameworkSecure DeploymentShared Services
Question #157Design security operations, identity, and compliance capabilities
Your company uses Azure Pipelines and Azure Repos to implement continuous integration and continuous deployment (CI/CD) workflows for the deployment of applications to Azure. You a...
DevSecOpsAzure ReposBranch PoliciesCI/CD
Question #158Design security operations, identity, and compliance capabilities
Your company plans to evaluate the security of its Azure environment based on the principles of the Microsoft Cloud Adoption Framework for Azure. You need to recommend a cloud-base...
NIST CSFRegulatory ComplianceMicrosoft Defender for CloudAzure Security
Question #159Design security solutions for infrastructure
You have a Microsoft 365 subscription and an Azure subscription. Microsoft 365 Defender and Microsoft Defender for Cloud are enabled. The Azure subscription contains 50 virtual mac...
Application ControlAzure VMs SecurityMicrosoft Defender for CloudEndpoint Security
Question #160Design security solutions for infrastructure
You have a Microsoft 365 subscription and an Azure subscription. Microsoft 365 Defender and Microsoft Defender for Cloud are enabled. The Azure subscription contains 50 virtual mac...
Application ControlMicrosoft Defender for EndpointServer SecurityEndpoint Security
Question #161Design security solutions for applications and data
You have a Microsoft 365 subscription. You need to design a solution to block file downloads from Microsoft SharePoint Online by authenticated users on unmanaged devices. Which two...
Conditional AccessMicrosoft Defender for Cloud AppsSharePoint Online SecurityData Loss Prevention
Question #162Design security operations, identity, and compliance capabilities
Your company wants to optimize using Microsoft Defender for Endpoint to protect its resources against ransomware based on Microsoft Security Best Practices. You need to prepare a p...
Incident ResponseMicrosoft Defender for EndpointContainmentRansomware
Question #163Design solutions that align with security best practices
You have an operational model based on the Microsoft Cloud Adoption Framework for Azure. You need to recommend a solution that focuses on cloud-centric control areas to protect res...
Microsoft Cloud Security Benchmark (MCSB)Security BaselinesCloud Adoption Framework (CAF)Resource Protection
Question #164Design security solutions for infrastructure
You have a Microsoft Entra tenant that syncs with an Active Directory Domain Services (AD DS) domain. You have an on-premises datacenter that contains 100 servers. The servers run...
Azure BackupRansomware ProtectionMulti-User AuthorizationResource Guard
Question #165Design solutions that align with security best practices and priorities
You design cloud-based software as a service (SaaS) solutions. You need to recommend a recovery solution for ransomware attacks. The solution must follow Microsoft Security Best Pr...
Ransomware RecoveryRecovery PlanningSaaS SecuritySecurity Best Practices
Question #167Design security operations, identity, and compliance capabilities
You have a Microsoft 365 subscription. You are designing a user access solution that follows the Zero Trust principles of the Microsoft Cybersecurity Reference Architectures (MCRA)...
Continuous Access EvaluationConditional AccessZero TrustIdentity and Access Management
Question #169Design security solutions for infrastructure
You have a Microsoft 365 subscription and an Azure subscription. Microsoft 365 Defender and Microsoft Defender for Cloud are enabled. The Azure subscription contains 50 virtual mac...
Application ControlMicrosoft Defender for EndpointEndpoint SecurityVirtual Machines
Question #170Design solutions that align with security best practices and priorities
You are designing a ransomware response plan that follows Microsoft Security Best Practices. You need to recommend a solution to minimize the risk of a ransomware attack encrypting...
Ransomware ProtectionEndpoint SecurityData ProtectionControlled Folder Access
Question #171Design solutions that align with security best practices and priorities
You have an Azure AD tenant that syncs with an Active Directory Domain Services (AD DS) domain. You are designing an Azure DevOps solution to deploy applications to an Azure subscr...
Managed IdentitiesDevSecOpsCI/CD SecurityIdentity Management
Question #172Design security solutions for infrastructure
You have an Azure Kubernetes Service (AKS) cluster that hosts Linux nodes. You need to recommend a solution to ensure that deployed worker nodes have the latest kernel updates. The...
AKSNode UpdatesKernel UpdatesSecurity Patching
Question #173Design security solutions for applications and data
You have the following on-premises servers that run Windows Server: - Two domain controllers in an Active Directory Domain Services (AD DS) domain - Two application servers named S...
Azure AD Application ProxyZero TrustAttack Surface ReductionSecure Application Access
Question #174Design security operations, identity, and compliance capabilities
You are designing a security operations strategy based on the Zero Trust framework. You need to minimize the operational load on Tier 1 Microsoft Security Operations Center (SOC) a...
SOC OperationsAutomated RemediationMicrosoft 365 DefenderZero Trust
Question #175Design security operations, identity, and compliance capabilities
You have an Azure subscription that has Microsoft Defender for Cloud enabled. You need to enforce ISO 27001:2013 standards for new resources deployed to the subscription. The solut...
Azure PolicyComplianceISO 27001Resource Governance
Question #176Design security solutions for infrastructure
You have a Microsoft 365 subscription and an Azure subscription. Microsoft 365 Defender and Microsoft Defender for Cloud are enabled. The Azure subscription contains 50 virtual mac...
Application ControlEndpoint SecurityMicrosoft Defender for EndpointVirtual Machine Security
Question #177Design security operations, identity, and compliance capabilities
Your company has an Azure subscription that has enhanced security enabled for Microsoft Defender for Cloud. The company signs a contract with the United States government. You need...
Regulatory ComplianceDefender for CloudNIST 800-53Compliance Assessment
Question #178Design security solutions for infrastructure
You have a Microsoft 365 subscription and an Azure subscription. Microsoft 365 Defender and Microsoft Defender for Cloud are enabled. The Azure subscription contains 50 virtual mac...
Application controlMicrosoft Defender for CloudVirtual machine securityEndpoint protection
Question #179Design security operations, identity, and compliance capabilities
You have a customer that has a Microsoft 365 subscription and an Azure subscription. The customer has devices that run either Windows, iOS, Android, or macOS. The Windows devices a...
Device ComplianceEndpoint SecurityMicrosoft Defender for EndpointSecurity Posture Management
Question #180Design security solutions for infrastructure
You have an on-premises datacenter and an Azure Kubernetes Service (AKS) cluster named AKS1. You need to restrict internet access to the public endpoint of AKS1. The solution must...
AKS SecurityNetwork Access ControlAPI Server SecurityAuthorized IP Ranges
Question #181Design security solutions for infrastructure
You have an Azure subscription. The subscription contains 50 virtual machines that run Windows Server and 50 virtual machines that run Linux. You need to perform vulnerability asse...
Vulnerability ManagementDefender for ServersVM SecurityQualys Integration
Question #182Design security operations, identity, and compliance capabilities
You have a Microsoft 365 tenant. Your company uses a third-party software as a service (SaaS) app named App1. App1 supports authenticating users by using Azure AD credentials. You...
Azure AD Application ProxyRemote accessApplication publishingAzure AD authentication

PreviousPage 3 of 5Next

study smarter, certify faster.

Product

Browse Exams
Pricing
PDF Downloads

Resources

Blog
Glossary
Topics
FAQ
Contact Us

Legal

Terms of Service
Privacy Policy
Cookie Policy
DMCA
Refund Policy

Company

About
Contact

© 2026 NerdExam. All rights reserved.Built for IT professionals

NerdExam is a trading name of WADL Solutions Limited, a company incorporated in Hong Kong (CR# 80143234). Registered office: Unit 2904-05, 29/F, Universal Trade Centre, 3 Arbuthnot Road, Central, Hong Kong.

CompTIA, AWS, Cisco, Microsoft, Google Cloud, Oracle, VMware, and other certification names referenced on this site are trademarks of their respective owners. NerdExam is not affiliated with, endorsed by, or sponsored by any certification vendor.