SC-900 · Question #118
SC-900 Question #118: Real Exam Question with Answer & Explanation
The correct answer is A: A grouping of controls from a specific regulation, standard or policy.. In Microsoft Purview Compliance Manager, an assessment is a structured grouping of controls mapped to a specific regulatory standard, certification, or policy-such as GDPR, ISO 27001, HIPAA, or NIST. Each assessment helps an organization evaluate its compliance posture against th
Question
What is an assessment in Compliance Manager?
Options
- AA grouping of controls from a specific regulation, standard or policy.
- BRecommended guidance to help organizations align with their corporate standards.
- CA dictionary of words that are not allowed in company documents.
- DA policy initiative that includes multiple policies.
Explanation
In Microsoft Purview Compliance Manager, an assessment is a structured grouping of controls mapped to a specific regulatory standard, certification, or policy-such as GDPR, ISO 27001, HIPAA, or NIST. Each assessment helps an organization evaluate its compliance posture against that standard by tracking the status of Microsoft-managed controls and customer-managed controls. Assessments generate a compliance score to show progress. Recommended guidance for corporate standards describes improvement actions, not assessments. A dictionary of disallowed words describes a custom sensitive information type or keyword list used in DLP. A policy initiative with multiple policies describes an Azure Policy concept, not Compliance Manager.
Topics
Community Discussion
No community discussion yet for this question.