Download Microsoft.SC-200.NewDumps.2021-07-27.62q.tqb

Download Exam

File Info

Exam Microsoft Security Operations Analyst
Number SC-200
File Name Microsoft.SC-200.NewDumps.2021-07-27.62q.tqb
Size 5 MB
Posted Jul 27, 2021
Download Microsoft.SC-200.NewDumps.2021-07-27.62q.tqb

How to open VCEX & EXAM Files?

Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.

Download
ProfExam Simulator

Purchase

Coupon: MASTEREXAM
With discount: 20%





Demo Questions

Question 1

You are investigating an incident by using Microsoft 365 Defender. 
You need to create an advanced hunting query to detect failed sign-in authentications on three devices named CFOLaptop, CEOLaptop, and COOLaptop. 
How should you complete the query?  
To answer, select the appropriate options in the answer area. 
NOTE: Each correct selection is worth one point.


Correct answer: To work with this question, an Exam Simulator is required.
Explanation:
Reference:https://github.com/microsoft/Microsoft-365-Defender-Hunting-Queries/blob/master/General%20queries/Failed%20Logon%20Attempt.txt
Reference:
https://github.com/microsoft/Microsoft-365-Defender-Hunting-Queries/blob/master/General%20queries/Failed%20Logon%20Attempt.txt



Question 2

You need to receive a security alert when a user attempts to sign in from a location that was never used by the other users in your organization to sign in. 
Which anomaly detection policy should you use?


  1. Impossible travel
  2. Activity from anonymous IP addresses
  3. Activity from infrequent country 
  4. Malware detection
Correct answer: C
Explanation:
Reference:https://docs.microsoft.com/en-us/cloud-app-security/anomaly-detection-policy
Reference:
https://docs.microsoft.com/en-us/cloud-app-security/anomaly-detection-policy



Question 3

You have a Microsoft 365 subscription that uses Microsoft Defender for Office 365. 
You have Microsoft SharePoint Online sites that contain sensitive documents. The documents contain customer account numbers that each consists of 32 alphanumeric characters. 
You need to create a data loss prevention (DLP) policy to protect the sensitive documents. 
What should you use to detect which documents are sensitive?


  1. SharePoint search
  2. a hunting query in Microsoft 365 Defender
  3. Azure Information Protection
  4. RegEx pattern matching
Correct answer: C
Explanation:
Reference:https://docs.microsoft.com/en-us/azure/information-protection/what-is-information-protection
Reference:
https://docs.microsoft.com/en-us/azure/information-protection/what-is-information-protection









CONNECT US

Facebook

Twitter

PROFEXAM WITH A 20% DISCOUNT

You can buy ProfExam with a 20% discount!

Get Now!


HOW TO OPEN VCEX FILES

Use ProfExam Simulator to open VCEX files