Class notes Operating System Design Operating System Concepts
Class notes Operating System Design Operating System Concepts
Samenvatting Operating systems theorie
Alles voor dit studieboek
(4)
Geschreven voor
CSO
CSO
Verkoper
Volgen
Knowledgekings
Voorbeeld van de inhoud
CSO 200 FINAL EXAM
REVIEW QUESTIONS
(GRADED A+)
Which Microsoft 365 Defender solution can detect an Active Directory Domain
compromise?
-Microsoft Defender for Identity
-Microsoft Defender for Endpoint
-Microsoft Defender for Office 365 - Microsoft Defender for Identity
- Domain compromise is detected with Microsoft Defender for Identity.
Which Microsoft 365 Defender solution can detect a phishing email?
-Microsoft Defender for Identity
-Microsoft Defender for Endpoint
-Microsoft Defender for Office 365 - Microsoft Defender for Office 365
- Phishing email is detected by Microsoft Defender for Office 365.
Which Microsoft 365 Defender solution can detect a malware installation?
-Microsoft Defender for Identity
-Microsoft Defender for Endpoint
-Microsoft Defender for Office 365 - Microsoft Defender for Endpoint
- Malware installation is detected by Microsoft Defender for Endpoint.
,When you're reviewing a specific incident, which tab is contained on the incident page?
-Networks
-Non-Azure Machines
-Mailboxes - Mailboxes
- The incident page has a tab for mailboxes.
You can classify an Incident as which of the following?
-True alert
-High alert
-Test alert - True alert
- True alert is an option.
The Devices page shows information from which Defender product?
-Microsoft Cloud App Security
-Microsoft Defender for Identity
-Microsoft Defender for Endpoint - Microsoft Defender for Endpoint
- Devices are based on Defender for Endpoint.
How do you protect against identity-based risks by using Azure AD Identity Protection?
-Configure an investigation policy and then remediate.
-Configure a report, remediate, and then configure a policy.
-Configure a policy, investigate by using a report, and remediate. - Configure a policy,
investigate by using a report, and remediate.
-Use your risk policy to help you investigate and remediate threats.
,You want to analyze risks that describe authentication requests for sign-ins that
probably weren't authorized by users. Which type of risks will you analyze?
-User risk
-Sign-in risk
-Authentication risk - Sign-in risk
-Azure AD Identity Protection scrutinizes each authentication request to judge whether it
was authorized by the owner of the identity.
Which report would you review to find devices that were identified as part of a detected
risk?
-Risky sign-in report
-Risky user report
-Risky registration report - Risky sign-in report
-Information like device details and location details is included in risky sign-in reports.
You want to use a risky sign-in report to find information on risky sign-ins for the past 29
days. How can you access this report?
-You can access and download the report from the Azure portal.
-You can't access the report from the portal because the data isn't retained any longer.
-You can't access the report from the portal, but only if you downloaded it in the first 30
days. - You can access and download the report from the Azure portal.
-The report data is retained for 30 days.
True or false? Microsoft Defender for Office 365 requires an agent to be deployed to all
Windows 10 devices in your organization for the best protection.
-True
, -False - False
- Microsoft Defender for Office 365 is a cloud-based email filtering service that helps
protect your organization. No agents are deployed.
What describes Safe Attachments from Microsoft Defender for Office 365?
-Messages and attachments are routed to a special environment where Microsoft
Defender for Office 365 uses a variety of machine learning and analysis techniques to
detect malicious intent.
-Protects your users from malicious URLs in a message or in an Office document.
-A powerful report that enables your Security Operations team to investigate and
respond to threats effectively and efficiently. - Messages and attachments are routed to
a special environment where Microsoft Defender for Office 365 uses a variety of
machine learning and analysis techniques to detect malicious intent.
-Microsoft Defender for Office 365 Safe Attachments protect against unknown malware
and viruses, and provide zero-day protection to safeguard your messaging system by
rerouting messages and using machine learning to detect malicious intent
Which of the following is not an Attack Simulator scenario?
-Spear phishing
-Password spray
-Bitcoin mining - Bitcoin mining
- Bitcoin mining is not an Attack Simulator scenario.
Microsoft Defender for Identity requires an on-premises Active Directory environment.
-True
-False - True
- Microsoft Defender for Identity is a cloud-based security solution that leverages your
on-premises Active Directory.
Voordelen van het kopen van samenvattingen bij Stuvia op een rij:
Verzekerd van kwaliteit door reviews
Stuvia-klanten hebben meer dan 700.000 samenvattingen beoordeeld. Zo weet je zeker dat je de beste documenten koopt!
Snel en makkelijk kopen
Je betaalt supersnel en eenmalig met iDeal, creditcard of Stuvia-tegoed voor de samenvatting. Zonder lidmaatschap.
Focus op de essentie
Samenvattingen worden geschreven voor en door anderen. Daarom zijn de samenvattingen altijd betrouwbaar en actueel. Zo kom je snel tot de kern!
Veelgestelde vragen
Wat krijg ik als ik dit document koop?
Je krijgt een PDF, die direct beschikbaar is na je aankoop. Het gekochte document is altijd, overal en oneindig toegankelijk via je profiel.
Tevredenheidsgarantie: hoe werkt dat?
Onze tevredenheidsgarantie zorgt ervoor dat je altijd een studiedocument vindt dat goed bij je past. Je vult een formulier in en onze klantenservice regelt de rest.
Van wie koop ik deze samenvatting?
Stuvia is een marktplaats, je koop dit document dus niet van ons, maar van verkoper Knowledgekings. Stuvia faciliteert de betaling aan de verkoper.
Zit ik meteen vast aan een abonnement?
Nee, je koopt alleen deze samenvatting voor €10,85. Je zit daarna nergens aan vast.