nerdexam
ExamsSC-200Questions#66
MicrosoftMicrosoft

SC-200 · Question #66

SC-200 Question #66: Real Exam Question with Answer & Explanation

The correct answer is B: a playbook. Use playbooks together with automation rules to automate your incident response and remediate security threats detected by Microsoft Sentinel. https://docs.microsoft.com/en-us/azure/sentinel/tutorial-respond-threats-playbook

Submitted by omar99· Apr 18, 2026Detect and remediate threats using Microsoft Sentinel

Question

A company uses Azure Sentinel. You need to create an automated threat response. What should you use?

Options

  • Aa data connector
  • Ba playbook
  • Ca workbook
  • Da Microsoft incident creation rule

Explanation

Use playbooks together with automation rules to automate your incident response and remediate security threats detected by Microsoft Sentinel. https://docs.microsoft.com/en-us/azure/sentinel/tutorial-respond-threats-playbook

Topics

#Azure Sentinel#Playbooks#Automated Response#Security Automation

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SC-200 PracticeBrowse All SC-200 Questions