Microsoft Cybersecurity Architect Expert SC-100
Get started today
Ultimate access to all questions.
Your organization is planning to adopt a Zero Trust security model to enhance its cybersecurity posture. As part of this initiative, you are tasked with designing a modern authentication and authorization strategy. The strategy must ensure secure access to resources while adhering to principles of least privilege and minimizing attack surfaces. Considering the need for scalability, compliance with industry standards, and the ability to integrate with existing Azure services, which of the following combinations of components would BEST align with a Zero Trust approach? (Choose one)
Your organization is planning to adopt a Zero Trust security model to enhance its cybersecurity posture. As part of this initiative, you are tasked with designing a modern authentication and authorization strategy. The strategy must ensure secure access to resources while adhering to principles of least privilege and minimizing attack surfaces. Considering the need for scalability, compliance with industry standards, and the ability to integrate with existing Azure services, which of the following combinations of components would BEST align with a Zero Trust approach? (Choose one)
Explanation:
A Zero Trust approach requires verifying every access request as if it originates from an untrusted network. Multi-factor authentication (MFA) adds an essential layer of security by requiring multiple forms of verification, significantly reducing the risk of unauthorized access. Role-based access control (RBAC) ensures that users are granted access only to the resources necessary for their roles, adhering to the principle of least privilege. While options A, B, and C offer certain security benefits, they either lack the rigorous verification required by Zero Trust (A and C) or may not be as scalable and manageable in large, dynamic environments (B). Therefore, the combination of MFA and RBAC (D) is the most aligned with a Zero Trust strategy.