This page was exported from Top Exam Collection [ http://blog.topexamcollection.com ] Export date:Sun Apr 13 3:40:46 2025 / +0000 GMT ___________________________________________________ Title: Updated Apr-2025 Test Engine to Practice SC-100 Test Questions [Q90-Q106] --------------------------------------------------- Updated Apr-2025 Test Engine to Practice SC-100 Test Questions SC-100 Real Exam Questions Test Engine Dumps Training With 189 Questions Microsoft SC-100 (Microsoft Cybersecurity Architect) Exam is a certification program designed for individuals who want to demonstrate their expertise in cybersecurity. SC-100 exam covers a range of topics, including security management, network security, and cloud security. It is an ideal certification for those who are looking to advance their career in the cybersecurity industry.   NEW QUESTION 90You have an Azure subscription that contains a resources group named RG1. RG1 contains multiple Azure Files shares.You need to recommend a solution to deploy a backup solution for the shares. The solution must meet the following requirements:* Prevent the deletion of backups and the vault used to store the backups.* Prevent privilege escalation attacks against the backup solution.* Prevent the modification of the backup retention period.Which three actions should you recommend be performed in sequence? To answer, move the appropriate actions from the list of actions to the answer area and arrange them in the correct order. Explanation:NEW QUESTION 91You have a Microsoft 365 E5 subscription and an Azure subscripts You need to evaluate the existing environment to increase the overall security posture for the following components:* Windows 11 devices managed by Microsoft Intune* Azure Storage accounts* Azure virtual machinesWhat should you use to evaluate the components? To answer, select the appropriate options in the answer area. Explanation:Selection 1: Microsoft 365 Defender (Microsoft Defender for Endpoint is part of it).Selection 2: Microsoft Defender for Cloud.Selection 3: Microsoft Defender for Cloud.https://docs.microsoft.com/en-us/learn/modules/design-strategy-for-secure-paas-iaas-saas-services/8-specify- security-requirements-for-storage-workloadsNEW QUESTION 92Your company is developing a serverless application in Azure that will have the architecture shown in the following exhibit.You need to recommend a solution to isolate the compute components on an Azure virtual network. What should you include in the recommendation?  Azure Active Directory (Azure AD) enterprise applications  an Azure App Service Environment (ASE)  Azure service endpoints  an Azure Active Directory (Azure AD) application proxy NEW QUESTION 93You need to recommend a strategy for App Service web app connectivity. The solution must meet the landing zone requirements. What should you recommend? To answer, select the appropriate options in the answer are a. NOTE Each correct selection is worth one point. NEW QUESTION 94You are designing a ransomware response plan that follows Microsoft Security Best Practices- You need to recommend a solution to limit the scope of damage of ransomware attacks without being locked out.What should you include in the recommendations?  Privileged Access Workstations (PAWs)  emergency access accounts  device compliance policies  Customer Lockbox for Microsoft Azure NEW QUESTION 95You have a Microsoft 365 E5 subscription and an Azure subscripts You need to evaluate the existing environment to increase the overall security posture for the following components:* Windows 11 devices managed by Microsoft Intune* Azure Storage accounts* Azure virtual machinesWhat should you use to evaluate the components? To answer, select the appropriate options in the answer area. ExplanationSelection 1: Microsoft 365 Defender (Microsoft Defender for Endpoint is part of it).Selection 2: Microsoft Defender for Cloud.Selection 3: Microsoft Defender for Cloud.https://docs.microsoft.com/en-us/learn/modules/design-strategy-for-secure-paas-iaas-saas-services/8-specify-secuNEW QUESTION 96You are designing an auditing solution for Azure landing zones that will contain the following components:* SQL audit logs for Azure SQL databases* Windows Security logs from Azure virtual machines* Azure App Service audit logs from App Service web appsYou need to recommend a centralized logging solution for the landing zones. The solution must meet the following requirements:* Log all privileged access.* Retain logs for at least 365 days.* Minimize costs.What should you include in the recommendation? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. NEW QUESTION 97You need to recommend a strategy for App Service web app connectivity. The solution must meet the landing zone requirements. What should you recommend? To answer, select the appropriate options in the answer area. NOTE Each correct selection is worth one point. NEW QUESTION 98You have a multi-cloud environment that contains an Azure subscription and an Amazon Web Services (AWS) account.You need to implement security services in Azure to manage the resources in both subscriptions. The solution must meet the following requirements:* Automatically identify threats found in AWS CloudTrail events.* Enforce security settings on AWS virtual machines by using Azure policies.What should you include in the solution for each requirement? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point. Explanation:NEW QUESTION 99Your company has on-premises Microsoft SQL Server databases.The company plans to move the databases to Azure.You need to recommend a secure architecture for the databases that will minimize operational requirements for patching and protect sensitive data by using dynamic data masking. The solution must minimize costs.What should you include in the recommendation?  Azure SQL Managed Instance  Azure Synapse Analytics dedicated SQL pools  Azure SQL Database  SQL Server on Azure Virtual Machines NEW QUESTION 100What should you create in Azure AD to meet the Contoso developer requirements? NEW QUESTION 101You need to recommend an identity security solution for the Azure AD tenant of Litware. The solution must meet the identity requirements and the regulatory compliance requirements.What should you recommend? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. Explanation:NEW QUESTION 102Your company finalizes the adoption of Azure and is implementing Microsoft Defender for Cloud.You receive the following recommendations in Defender for Cloud* Access to storage accounts with firewall and virtual network configurations should be restricted,* Storage accounts should restrict network access using virtual network rules.* Storage account should use a private link connection.* Storage account public access should be disallowed.You need to recommend a service to mitigate identified risks that relate to the recommendations. What should you recommend?  Azure Storage Analytics  Azure Network Watcher  Microsoft Sentinel  Azure Policy https://docs.microsoft.com/en-us/azure/defender-for-cloud/security-policy-concept https://docs.microsoft.com/en-us/security/benchmark/azure/baselines/storage-security-baselineNEW QUESTION 103You have a Microsoft 365 E5 subscription and an Azure subscripts You need to evaluate the existing environment to increase the overall security posture for the following components:* Windows 11 devices managed by Microsoft Intune* Azure Storage accounts* Azure virtual machinesWhat should you use to evaluate the components? To answer, select the appropriate options in the answer area. NEW QUESTION 104Your company is developing a serverless application in Azure that will have the architecture shown in the following exhibit.You need to recommend a solution to isolate the compute components on an Azure virtual network. What should you include in the recommendation?  Azure Active Directory (Azure AD) enterprise applications  an Azure App Service Environment (ASE)  Azure service endpoints  an Azure Active Directory (Azure AD) application proxy NEW QUESTION 105You need to recommend a multi-tenant and hybrid security solution that meets to the business requirements and the hybrid requirements. What should you recommend? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point. NEW QUESTION 106Your company plans to follow DevSecOps best practices of the Microsoft Cloud Adoption Framework for Azure to integrate DevSecOps processes into continuous integration and continuous deployment (Cl/CD) DevOps pipelines You need to recommend which security-related tasks to integrate into each stage of the DevOps pipelines.What should recommend? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point. Explanation: Loading … SC-100 Actual Questions Answers PDF 100% Cover Real Exam Questions: https://www.topexamcollection.com/SC-100-vce-collection.html --------------------------------------------------- Images: https://blog.topexamcollection.com/wp-content/plugins/watu/loading.gif https://blog.topexamcollection.com/wp-content/plugins/watu/loading.gif --------------------------------------------------- --------------------------------------------------- Post date: 2025-04-09 09:35:23 Post date GMT: 2025-04-09 09:35:23 Post modified date: 2025-04-09 09:35:23 Post modified date GMT: 2025-04-09 09:35:23