Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Microsoft Exam SC-100 Topic 4 Question 49 Discussion

Actual exam question for Microsoft's SC-100 exam
Question #: 49
Topic #: 4
[All SC-100 Questions]

You have a Microsoft 365 tenant that contains 5,000 users and 5,000 Windows 11 devices. All users are assigned Microsoft 365 5 licenses and the Microsoft Defender Vulnerability Management add-on. The Windows 11 devices are managed by using Microsoft Intune and Microsoft Defender for Endpoint. The Windows 11 devices are configured during deployment to comply with Center for Internet Security (CIS) benchmarks for Windows 11.

You need to recommend a compliance solution for the Windows 11 devices. The solution must identify devices that were modified and no longer comply with the CIS benchmarks.

What should you include in the recommendation?

Show Suggested Answer Hide Answer
Suggested Answer: D

Contribute your Thoughts:

Lanie
3 months ago
Ooh, I have a joke for this one! Why did the cybersecurity expert cross the road? To get to the other SIDE of the CIS benchmark! Ba dum tss.
upvoted 0 times
Chauncey
2 months ago
D) security baselines assessments in Microsoft Defender Vulnerability Management
upvoted 0 times
...
Twila
2 months ago
C) attack surface reduction (ASR) rules in Defender for Endpoint
upvoted 0 times
...
Rocco
2 months ago
B) Microsoft Secure Score for Devices in Defender for Endpoint
upvoted 0 times
...
Carin
2 months ago
A) Authenticated scan for Windows in Microsoft Defender Vulnerability Management
upvoted 0 times
...
...
Makeda
3 months ago
I'm not sure, but option A) Authenticated scan for Windows in Microsoft Defender Vulnerability Management could also be a good choice.
upvoted 0 times
...
Alesia
3 months ago
I agree with option D. It seems like the most comprehensive solution for our needs.
upvoted 0 times
...
Laurel
3 months ago
Hmm, I'd go with B. The Secure Score for Devices in Defender for Endpoint should give a good overview of the compliance posture. Gotta love those fancy security scores!
upvoted 0 times
Bo
2 months ago
I agree, having a security score can really help prioritize actions to improve security posture.
upvoted 0 times
...
Melda
2 months ago
That sounds like a solid choice. It's always good to have a clear view of compliance.
upvoted 0 times
...
Aja
3 months ago
B) Microsoft Secure Score for Devices in Defender for Endpoint
upvoted 0 times
...
...
Vince
3 months ago
I think we should go with option D) security baselines assessments in Microsoft Defender Vulnerability Management.
upvoted 0 times
...
Sabine
4 months ago
I agree, D seems the most relevant. Keeping those devices in compliance is crucial, and the vulnerability management tools can really help with that.
upvoted 0 times
...
Reuben
4 months ago
Option D looks like the way to go. Security baselines assessments should help identify any deviations from the CIS benchmarks.
upvoted 0 times
Denae
2 months ago
I agree, security baselines assessments in Microsoft Defender Vulnerability Management would be the best choice for this scenario.
upvoted 0 times
...
Arlean
2 months ago
Yes, using security baselines assessments will ensure that any modifications to the Windows 11 devices are quickly identified and remediated.
upvoted 0 times
...
Emogene
3 months ago
Option D looks like the way to go. Security baselines assessments should help identify any deviations from the CIS benchmarks.
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77