For a Microsoft cloud environment, you have been tasked with designing a security architecture based on the Microsoft Cybersecurity Reference Architectures (MCRA). In this context, you need to address protection measures for the following external threats within an attack chain:

• An attacker attempting to exfiltrate data to external websites. • An attacker attempting lateral movement across domain-joined computers.

What should be included in your recommendations to mitigate each of these threats? To answer, select the appropriate options in the answer area.