Microsoft Cybersecurity Architect
Last Update Jun 30, 2025
Total Questions : 215
To help you prepare for the SC-100 Microsoft exam, we are offering free SC-100 Microsoft exam questions. All you need to do is sign up, provide your details, and prepare with the free SC-100 practice questions. Once you have done that, you will have access to the entire pool of Microsoft Cybersecurity Architect SC-100 test questions which will help you better prepare for the exam. Additionally, you can also find a range of Microsoft Cybersecurity Architect resources online to help you better understand the topics covered on the exam, such as Microsoft Cybersecurity Architect SC-100 video tutorials, blogs, study guides, and more. Additionally, you can also practice with realistic Microsoft SC-100 exam simulations and get feedback on your progress. Finally, you can also share your progress with friends and family and get encouragement and support from them.
You have an Azure subscription that has Microsoft Defender for Cloud enabled. You are evaluating the Azure Security Benchmark V3 report.
In the Secure management ports controls, you discover that you have 0 out of a potential 8 points. You need to recommend configurations to increase the score of the Secure management ports controls.
Solution: You recommend onboarding all virtual machines to Microsoft Defender for Endpoint.
Does this meet the goal?
You receive a security alert in Microsoft Defender for Cloud as shown in the exhibit. (Click the Exhibit tab.)
After remediating the threat which policy definition should you assign to prevent the threat from reoccurring?
Your company finalizes the adoption of Azure and is implementing Microsoft Defender for Cloud.
You receive the following recommendations in Defender for Cloud
• Access to storage accounts with firewall and virtual network configurations should be restricted,
• Storage accounts should restrict network access using virtual network rules.
• Storage account should use a private link connection.
• Storage account public access should be disallowed.
You need to recommend a service to mitigate identified risks that relate to the recommendations. What should you recommend?
You have an Azure AD tenant that syncs with an Active Directory Domain Services (AD DS) domain.
You have an on-premises datacenter that contains 100 servers. The servers run Windows Server and are backed up by using Microsoft Azure Backup Server (MABS).
You are designing a recovery solution for ransomware attacks. The solution follows Microsoft Security Best Practices.
You need to ensure that a compromised administrator account cannot be used to delete the backups
What should you do?