Assess the CertsIQ’s updated SC-100 exam questions for free online practice of your Microsoft Cybersecurity Architect test. Our SC 100 dumps questions will enhance your chances of passing the Microsoft Certified Cybersecurity Architect Expert certification exam with higher marks.
Your company has the virtual machine infrastructure shown in the following table.
The company plans to use Microsoft Azure Backup Server (MABS) to back up the virtual machines to
Azure.
You need to provide recommendations to increase the resiliency of the backup strategy to mitigate
attacks such as ransomware.
What should you include in the recommendation?
You are designing the encryption standards for data at rest for an Azure resource
You need to provide recommendations to ensure that the data at rest is encrypted by using AES-256
keys. The solution must support rotating the encryption keys monthly.
Solution: For Azure SQL databases, you recommend Transparent Data Encryption (TDE) that uses customer-managed keys (CMKs).
Does this meet the goal?
You have a Microsoft 365 subscription and an Azure subscription. Microsoft 365 Defender and Microsoft Defender for Cloud are enabled. The Azure subscription contains 50 virtual machines. Each virtual machine runs different applications on Windows Server 2019. You need to recommend a solution to ensure that only authorized applications can run on the virtual machines. If an unauthorized application attempts to run or be installed, the application must be blocked automatically until an administrator authorizes the application. Which security control should you recommend?
Your company is developing a modern application that will run as an Azure App Service web app. You plan to perform threat modeling to identify potential security issues by using the Microsoft Threat Modeling Tool. Which type of diagram should you create?
You have an Azure AD tenant that contains 10 Windows 11 devices and two groups named Group1
and Group2. The Windows 11 devices are joined to the Azure AD tenant and are managed by using
Microsoft Intune.
You are designing a privileged access strategy based on the rapid modernization plan (RaMP). The
strategy will include the following configurations:
Each user in Group1 will be assigned a Windows 11 device that will be configured as a privileged
access device.
The Security Administrator role will be mapped to the privileged access security level.
The users in Group1 will be assigned the Security Administrator role.
The users in Group2 will manage the privileged access devices.
You need to configure the local Administrators group for each privileged access device. The solution
must follow the principle of least privilege.
What should you include in the solution?
© Copyrights CertsIQ 2025. All Rights Reserved
We use cookies to ensure that we give you the best experience on our website (CertsIQ). If you continue without changing your settings, we'll assume that you are happy to receive all cookies on the CertsIQ.
Full Access to 201 Questions