Answer-first summary for fast verification
Answer: Identify and prioritize the organization's critical assets and systems, then conduct a comprehensive risk assessment to identify potential threats and vulnerabilities specific to Azure services.
A risk-based approach to cybersecurity in Microsoft Azure requires a methodical process that begins with identifying and prioritizing critical assets and systems. This is followed by conducting a comprehensive risk assessment to understand the specific threats and vulnerabilities within the Azure environment. This approach ensures that the organization can focus its resources effectively, comply with regulations, and scale its security measures as needed. Implementing advanced tools without assessment (A) may lead to unnecessary costs and complexity. Focusing solely on compliance (C) or skipping the initial risk assessment (D) leaves the organization vulnerable to other threats not covered by compliance requirements.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your organization is planning to adopt a risk-based approach to cybersecurity in Microsoft Azure. The organization has critical assets hosted in Azure and must comply with industry-specific regulations. Considering cost, compliance, and scalability, what is the BEST sequence of steps to design and implement this approach? (Choose the single best answer)
A
Immediately implement the most advanced security tools available in Azure without assessing current risks to ensure maximum protection.
B
Identify and prioritize the organization's critical assets and systems, then conduct a comprehensive risk assessment to identify potential threats and vulnerabilities specific to Azure services.
C
Develop and implement a risk management plan focusing solely on compliance requirements, ignoring other potential threats.
D
Regularly review and update the risk management plan to address emerging threats and changes in the organization's risk profile, starting after the initial implementation without prior risk assessment.
E
All of the above.
No comments yet.