You are responsible for responding to Azure Defender for Key Vault alerts.During an investigation of an alert, you discover unauthorized attempts to access a key vault from a Tor exit node.What should you configure to mitigate the threat?
HOTSPOT -You need to use an Azure Resource Manager template to create a workflow automation that will trigger an automatic remediation when specific security alerts are received by Azure Security Center.How should you complete the portion of the template that will provision the required Azure resources? To answer, select the appropriate options in the answer area.NOTE: Each correct selection is worth one point.Hot Area:
You have an Azure subscription that contains a Log Analytics workspace.You need to enable just-in-time (JIT) VM access and network detections for Azure resources.Where should you enable Azure Defender?
You use Azure Defender.You have an Azure Storage account that contains sensitive information.You need to run a PowerShell script if someone accesses the storage account from a suspicious IP address.Which two actions should you perform? Each correct answer presents part of the solution.NOTE: Each correct selection is worth one point.
HOTSPOT -You manage the security posture of an Azure subscription that contains two virtual machines name vm1 and vm2.The secure score in Azure Security Center is shown in the Security Center exhibit. (Click the Security Center tab.)Azure Policy assignments are configured as shown in the Policies exhibit. (Click the Policies tab.)For each of the following statements, select Yes if the statement is true. Otherwise, select No.NOTE: Each correct selection is worth one point.Hot Area:
You need to configure Microsoft Cloud App Security to generate alerts and trigger remediation actions in response to external sharing of confidential files.Which two actions should you perform in the Cloud App Security portal? Each correct answer presents part of the solution.NOTE: Each correct selection is worth one point.
