Security Threat Protection

Question 1

Which service is a cloud based SIEM that aggregates data from different sources and can collect cloud data at scale

Answer 1

Azure Sentinel

Question 2

Which service uses Azure Monitor Workbooks to automate responses to threats

Answer 2

Azure Sentinel

Question 3

Which service has built in analytics templates and allows you to create custom templates

Answer 3

Azure Sentinel

Question 4

Which service can be used to manage secrets, passwords, certificates etc.

Answer 4

Azure Key Vault

Question 5

Which service provides dedicated physical servers to host Azure VMs for Windows and Linux and gives control over server infrastructure running the VMs

Answer 5

Azure Dedicated Host

Question 6

Which service monitors services on Azure and on-premise, monitors security settings and provides security recommendations

Answer 6

Azure Security Centre

Question 7

Which service controls what apps are allowed to run on VMs

Answer 7

Azure Security Centre

Question 8

Which service automatically applies security settings to new resources

Answer 8

Azure Security Centre

Question 9

Which service uses machine learning to detect and block malware from being installed on VMs and resources

Answer 9

Azure Security Centre

Question 10

Which service integrates with Azure security centre to help prevent detect and respond to threats

Answer 10

Azure Advisor

Question 11

Which 3 services fall within the identity and access defense in depth layer

Answer 11

SSO
MFA
Audit events and changes

Question 12

Which 2 services fall within the perimeter layer of defense in depth

Answer 12

DDoS protection

Perimeter firewalls

Question 13

Which service leverages on premise active directory signals to identify detect and investigate advanxes threats, compromised identities and malicious insider actions

Answer 13

Azure Advanced Threat Protection

Question 14

You can enable just in time VM access by using which service

Answer 14

Azure Security Centre