Practice Exams:

Free SC-200 Exam Braindumps

Pass your Microsoft Security Operations Analyst exam with these free Questions and Answers

Page 9 of 40
PDF with 197 Questions
QUESTION 36

- (Exam Topic 3)
You are configuring Azure Sentinel.
You need to send a Microsoft Teams message to a channel whenever a sign-in from a suspicious IP address is detected.
Which two actions should you perform in Azure Sentinel? Each correct answer presents part of the solution. NOTE: Each correct selection is worth one point.

  1. A. Add a playbook.
  2. B. Associate a playbook to an incident.
  3. C. Enable Entity behavior analytics.
  4. D. Create a workbook.
  5. E. Enable the Fusion rule.

Correct Answer: AB
Reference:
https://docs.microsoft.com/en-us/azure/sentinel/tutorial-respond-threats-playbook

Page 9 of 40
PDF with 197 Questions

Post your Comments and Discuss Microsoft SC-200 exam with other Community members: