You use Azure Security Center. You receive a security alert in Security Center. You need to view recommendations to resolve the alert in Security Center. What should you do?
A.
From Security alerts, select the alert, select Take Action, and then expand the Prevent future attacks section.
B.
From Security alerts, select Take Action, and then expand the Mitigate the threat section.
C.
From Regulatory compliance, download the report.
it is B. With the 'Mitigate the threat' action you receive recommendations to mitigate this threat. The 'Prevent future attacks' action provides security recommendations to help reduce the attack surface, increase security posture, and thus prevent future attacks.
The question is asking for how to resolve the alert. In other words, to respond to an offending security event.
Mitigate the threat section involves alerts affecting the device.
Prevent future attack deals with reducing attack surface and vulnerability remediation recommendations.
Remediating a vulnerability or hardening a devices does not resolve an alert.
https://learn.microsoft.com/en-us/azure/defender-for-cloud/managing-and-responding-alerts#respond-to-security-alerts
Both A and B work (sort of). but the answer is definitely B.
When you follow the precise steps of A.
You expand "Prevent future attacks" and see:
"Solving security recommendations can prevent future attacks by reducing attack surface."
In other words, please refer to "Mitigate".
If you follow the steps of B.
You expand "Mitigate the threat" and see:
The specific steps to correct the specific issue. It will also provide a URL to documentation (if applicable) and it will mention if there are any other alerts on the affected resource.
*Tested on my MSP's tenant. You can even generate sample alerts to do this if you don't have any*.
You need to solve the (current) alert. This means that first, you do step B. Then, if you want to protect your system from future threats, you do step A, which is not required in this specific question.
Option A aligns with Azure Security Center's recommended approach to handling security alerts. By selecting the alert, taking action, and expanding the "Prevent future attacks" section, you will access detailed guidance on how to mitigate the identified threat and strengthen your security posture to prevent similar incidents. This is consistent with how Azure Security Center organizes its guidance and recommendations.
B is correct. Because it is dealing with a current issue. The question is dealing with a present security alert. So be will be suitable.
A would be an option for future attacks.
B is correct. Because it is dealing with a current issue. The question is dealing with a present security alert. So be will be suitable.
A would be an option for future attacks.
They question is asking for “view recommendations”, therefore the best answer is A.
“Prevent future attacks - provides security recommendations to help reduce the attack surface, increase security posture, and thus prevent future attacks”
Mitigate the threat provides steps to remediate said threat. Whereas Prevent future attacks offers security recommendations to minimize attack surface on the host.
Correct answer is A. From Security alerts, select the alert, select Take Action, and then expand the Prevent future attacks section. This will show you the security recommendations to help reduce the attack surface, increase security posture, and thus prevent future attacks.
To view the recommendations, you can follow these steps:
From Defender for Cloud’s security alerts page, select the alert you want to resolve.
Select Take Action at the top of the alert details page.
Expand the Prevent future attacks section and review the recommendations.
Hola a todos, para esta pregunta la respuesta correcta es la A, acabo de validarlo, tienes que seleccionar la alerta para que luego puedas seleccionar Take Action.
Microsoft Defender for Cloud -> Security Alerts -> Select Alert -> Select Take Action ...
A is the answer, only Prevent future attacks - provides security recommendations to help reduce the attack surface, increase security posture, and thus prevent future attacks
B is incorrect because Mitigate the threat - provides manual remediation steps for this security alert
https://learn.microsoft.com/en-us/azure/defender-for-cloud/managing-and-responding-alerts#respond-to-security-alerts
The correct answer is B. From Security alerts, select Take Action, and then expand the Mitigate the threat section.
To view recommendations to resolve a security alert in Azure Security Center, you should follow these steps:
Go to the Security alerts page in Security Center.
Select the specific security alert that you want to view recommendations for.
Select the Take Action button.
Expand the Mitigate the threat section to view the recommended steps for resolving the alert.
These recommendations provide detailed information and steps for addressing the security issue that is raised by the alert, and help you to prevent future attacks on your resources. By following the recommendations, you can improve the security posture of your resources in Azure.
This section is not available anymore. Please use the main Exam Page.SC-200 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
NickHSO
Highly Voted 3 years, 4 months agoEltooth
Highly Voted 3 years, 7 months agoNikki0222
Most Recent 6 months, 1 week agotalosDevbot
7 months, 1 week agoStudytime2023
8 months, 3 weeks agoxRiot007
4 months, 4 weeks agoAvaris
10 months, 2 weeks agoggGG1357
1 year, 4 months agoggGG1357
1 year, 4 months agochepeerick
1 year, 6 months agoGurulee
1 year, 6 months agoGurulee
1 year, 6 months agoGurulee
1 year, 4 months agoliveup2it
11 months, 1 week agosand5234
1 year, 7 months agoAnil0512
1 year, 7 months agoRamye
1 year, 2 months agomali1969
1 year, 8 months agoXLR8T2
1 year, 9 months agotatendazw
1 year, 10 months agoxRiot007
4 months, 4 weeks agoLone__Wolf
2 years, 2 months agoamsioso
2 years, 7 months ago