Threat Detection — Microsoft Azure Security Engineer (AZ-500) Practice Questions
Threat detection in Azure involves identifying malicious or anomalous activity across identities, resources, data, and network traffic using behavioral analytics and threat intelligence. The AZ-500 exam covers Microsoft Defender for Cloud's threat detection alerts for services such as Key Vault, Storage, SQL, and virtual machines, as well as identity-based detections from Microsoft Entra ID Protection. Candidates must understand how to investigate alerts, correlate signals across services, and configure alert notifications and automated responses to contain threats quickly.
Free questions on threat detection
What does Azure Sentinel provide for security operations?
Free question · medium · full answer + explanation
More threat detection questions in the full bank
- You need to detect lateral movement in your network. What should you monitor? Unlock answer & explanation →
- Which feature in Azure SQL Database detects suspicious patterns? Unlock answer & explanation →
- Your Azure SQL Database is the target of repeated brute-force login attacks. What defenses should you implement? Unlock answer & explanation →