Exam (elaborations)
Exam (elaborations) CSO Operating System Concepts exam questions review graded A+
This post covers Exam questions review on CSO 200 with verified solutions and the best explanations
[Show more]
Connected book
Book Title:
Author(s):
- Edition:
- ISBN:
- Edition:
Seller
Follow
Content preview
CSO 200 FINAL EXAMREVIEW QUESTIONS
(GRADED A+)
Which Microsoft 365 Defender solution can detect an Active Directory Domain
compromise?
-Microsoft Defender for Identity
-Microsoft Defender for Endpoint
-Microsoft Defender for Office 365 - Microsoft Defender for Identity
- Domain compromise is detected with Microsoft Defender for Identity.
Which Microsoft 365 Defender solution can detect a phishing email?
-Microsoft Defender for Identity
-Microsoft Defender for Endpoint
-Microsoft Defender for Office 365 - Microsoft Defender for Office 365
- Phishing email is detected by Microsoft Defender for Office 365.
Which Microsoft 365 Defender solution can detect a malware installation?
-Microsoft Defender for Identity
-Microsoft Defender for Endpoint
-Microsoft Defender for Office 365 - Microsoft Defender for Endpoint
- Malware installation is detected by Microsoft Defender for Endpoint.
,When you're reviewing a specific incident, which tab is contained on the incident page?
-Networks
-Non-Azure Machines
-Mailboxes - Mailboxes
- The incident page has a tab for mailboxes.
You can classify an Incident as which of the following?
-True alert
-High alert
-Test alert - True alert
- True alert is an option.
The Devices page shows information from which Defender product?
-Microsoft Cloud App Security
-Microsoft Defender for Identity
-Microsoft Defender for Endpoint - Microsoft Defender for Endpoint
- Devices are based on Defender for Endpoint.
How do you protect against identity-based risks by using Azure AD Identity Protection?
-Configure an investigation policy and then remediate.
-Configure a report, remediate, and then configure a policy.
-Configure a policy, investigate by using a report, and remediate. - Configure a policy,
investigate by using a report, and remediate.
-Use your risk policy to help you investigate and remediate threats.
,You want to analyze risks that describe authentication requests for sign-ins that
probably weren't authorized by users. Which type of risks will you analyze?
-User risk
-Sign-in risk
-Authentication risk - Sign-in risk
-Azure AD Identity Protection scrutinizes each authentication request to judge whether it
was authorized by the owner of the identity.
Which report would you review to find devices that were identified as part of a detected
risk?
-Risky sign-in report
-Risky user report
-Risky registration report - Risky sign-in report
-Information like device details and location details is included in risky sign-in reports.
You want to use a risky sign-in report to find information on risky sign-ins for the past 29
days. How can you access this report?
-You can access and download the report from the Azure portal.
-You can't access the report from the portal because the data isn't retained any longer.
-You can't access the report from the portal, but only if you downloaded it in the first 30
days. - You can access and download the report from the Azure portal.
-The report data is retained for 30 days.
True or false? Microsoft Defender for Office 365 requires an agent to be deployed to all
Windows 10 devices in your organization for the best protection.
-True
, -False - False
- Microsoft Defender for Office 365 is a cloud-based email filtering service that helps
protect your organization. No agents are deployed.
What describes Safe Attachments from Microsoft Defender for Office 365?
-Messages and attachments are routed to a special environment where Microsoft
Defender for Office 365 uses a variety of machine learning and analysis techniques to
detect malicious intent.
-Protects your users from malicious URLs in a message or in an Office document.
-A powerful report that enables your Security Operations team to investigate and
respond to threats effectively and efficiently. - Messages and attachments are routed to
a special environment where Microsoft Defender for Office 365 uses a variety of
machine learning and analysis techniques to detect malicious intent.
-Microsoft Defender for Office 365 Safe Attachments protect against unknown malware
and viruses, and provide zero-day protection to safeguard your messaging system by
rerouting messages and using machine learning to detect malicious intent
Which of the following is not an Attack Simulator scenario?
-Spear phishing
-Password spray
-Bitcoin mining - Bitcoin mining
- Bitcoin mining is not an Attack Simulator scenario.
Microsoft Defender for Identity requires an on-premises Active Directory environment.
-True
-False - True
- Microsoft Defender for Identity is a cloud-based security solution that leverages your
on-premises Active Directory.
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller TGUARD. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $10.99. You're not tied to anything after your purchase.
Can Stuvia be trusted?
4.6 stars on Google & Trustpilot (+1000 reviews)
75759 documents were sold in the last 30 days
Founded in 2010, the go-to place to buy study notes for 14 years now