SC-100 Exam Question 136

You are a security architect in an organization. The chief compliance officer has tasked you to ensure that all new Azure core services are HIPAA compliant.
What operation compliance Azure solution can you use to automate the deployment compliance for Azure core services?
  • SC-100 Exam Question 137

    Hotspot Question
    You have an on-premises datacenter named Site1.
    You have an Azure subscription that contains a virtual network named VNet1 and multiple Azure App Service apps. Site1 is connected to VNet1 by using a Site-to-Site (P2S) VPN connection.
    The apps are accessed by using public internet connections.
    You need to recommend a solution for providing secure access to the apps. The solution must meet the following requirements:
    - Servers on Site1 must use a VPN connection to access the apps.
    - Access to the apps must be restricted to specific servers on Site1.
    - Security administrators for VNet1 must be able to control which
    servers can access the apps.
    - Costs must be minimized.
    What should you include in the recommendation? To answer, select the appropriate options in the answer area.
    NOTE: Each correct selection is worth one point.

    SC-100 Exam Question 138

    Hotspot Question
    You have an Azure subscription that contains App Service apps in four Azure regions. Users connect to the apps from the internet.
    You plan to block requests to the apps if the requests contain security threats specified in the Core Rule Set (CRS) of the Open Web Application Security Project (OWASP).
    You need to design a solution to block the requests. The solution must meet the following requirements:
    - Maintain access to the apps in the event of a region outage.
    - Minimize the number of resources required.
    What should you include in the design? To answer, select the appropriate options in the answer area.
    NOTE: Each correct selection is worth one point.

    SC-100 Exam Question 139

    You are designing the security standards for a new Azure environment.
    You need to design a privileged identity strategy based on the Zero Trust model.
    Which framework should you follow to create the design?
  • SC-100 Exam Question 140

    You are designing the security standards for containerized applications onboarded to Azure.
    You are evaluating the use of Microsoft Defender for Containers.
    In which two environments can you use Defender for Containers to scan for known vulnerabilities? Each correct answer presents a complete solution. NOTE: Each correct selection is worth one point.