Microsoft Cybersecurity Architect Expert SC-100
Get started today
Ultimate access to all questions.
You are managing an Azure subscription where Microsoft Defender for Cloud is enabled. Recently, you have observed suspicious authentication activity alerts appearing in the Workload protections dashboard. Your objective is to find a solution that can both evaluate and remediate these alerts through workflow automation while ensuring minimal development effort is required. What should you include in your recommendation?
Exam-Like
A
Azure Monitor webhooks
B
Azure Event Hubs
C
Azure Functions apps
D
Azure Logic Apps
Explanation:
The workflow automation feature of Microsoft Defender for Cloud can trigger Logic Apps on security alerts, recommendations, and changes to regulatory compliance. Azure Logic Apps is a cloud-based platform that allows you to create and run automated workflows that can integrate with your apps, data, services, and systems. This minimizes development effort compared to other options like Azure Functions apps.
Comments
Loading comments...