Microsoft Certified: Security Operations Analyst Associate SC-200 Updated Exam

Page: 9 / 11

Question 36

You need to implement the Azure Information Protection requirements. What should you configure first?

Options:

Device health and compliance reports settings in Microsoft Defender Security Center

scanner clusters in Azure Information Protection from the Azure portal

content scan jobs in Azure Information Protection from the Azure portal

Advanced features from Settings in Microsoft Defender Security Center

Question 37

You need to create the test rule to meet the Azure Sentinel requirements. What should you do when you create the rule?

Options:

From Set rule logic, turn off suppression.

From Analytics rule details, configure the tactics.

From Set rule logic, map the entities.

From Analytics rule details, configure the severity.

Question 38

You need to create the analytics rule to meet the Azure Sentinel requirements.

What should you do? To answer, select the appropriate options in the answer area.

NOTE: Each correct selection is worth one point.

Options:

Question 39

You need to implement Microsoft Defender for Cloud to meet the Microsoft Defender for Cloud requirements and the business requirements. What should you include in the solution? To answer, select the appropriate options in the answer area. NOTE: Each correct selection is worth one point.