[2025年11月] 最新のMicrosoft SC-900認定練習テスト問題
確認済みSC-900問題集と解答で一年間無料最速更新
Microsoft SC-900試験は、ITセキュリティの分野の初心者にとって理想的な出発点です。この試験は、セキュリティ、コンプライアンス、およびアイデンティティの基本的な概念に関する候補者の知識を検証するように設計されています。この試験に合格した候補者は、ITセキュリティでキャリアを構築するための強固な基盤を持っています。さらに、この試験に合格すると、候補者が雇用市場の他の候補者と区別するのに役立ちます。
Microsoft SC-900試験は、クラウドのコンセプト、コアのAzureサービス、セキュリティ機能とツール、コンプライアンス、プライバシー、クラウドサービスの信頼性、およびアイデンティティとアクセス管理に関連する幅広いトピックをカバーしています。この試験に合格することで、個人がこれらの概念を基本的に理解しており、より高度なMicrosoftセキュリティ、コンプライアンス、およびアイデンティティテクノロジーの役割を担う準備ができていることを示します。この分野に新しく入ったり、Microsoftセキュリティ、コンプライアンス、およびアイデンティティのキャリアに移行したい人にとって、Microsoft SC-900試験は優れた出発点です。
Microsoft SC-900認定試験は、IT専門家がサイバーセキュリティ分野でキャリアを進めたいと考えている人々にとって、優れたスタート地点となります。また、最新のMicrosoftセキュリティとコンプライアンスの技術やベストプラクティスについて学びたい人々にとっても、優れた資格です。この認定試験に合格することで、個人はセキュリティ、コンプライアンス、およびアイデンティティの基礎知識に関する専門知識を証明し、求職活動での可能性を高め、競争の激しい就職市場で目立つことができます。
質問 # 125
Match the Azure networking service to the appropriate description.
To answer, drag the appropriate service from the column on the left to its description on the right. Each service may be used once, more than once, or not at all.
NOTE: Each correct match is worth one point.
正解:
解説:
Reference:
https://docs.microsoft.com/en-us/azure/networking/fundamentals/networking-overview https://docs.microsoft.com/en-us/azure/bastion/bastion-overview https://docs.microsoft.com/en-us/azure/firewall/features
https://docs.microsoft.com/en-us/azure/virtual-network/network-security-groups-overview
質問 # 126
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
正解:
解説:
Explanation
Graphical user interface, text, application, email Description automatically generated
Box 1: Yes
System updates reduces security vulnerabilities, and provide a more stable environment for end users. Not applying updates leaves unpatched vulnerabilities and results in environments that are susceptible to attacks.
Box 2: Yes
Box 3: Yes
If you only use a password to authenticate a user, it leaves an attack vector open. With MFA enabled, your accounts are more secure.
質問 # 127
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point
正解:
解説:
質問 # 128
For each of the following statements, select Yes if the statement is true. Otherwise, select No. NOTE: Each correct selection is worth one point.
正解:
解説:
質問 # 129
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
正解:
解説:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/insider-risk-management?view=o365-worldwide
https://docs.microsoft.com/en-us/microsoft-365/compliance/microsoft-365-compliance-center?view=o365-worldwide
質問 # 130
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
正解:
解説:

質問 # 131
Select the answer that correctly completes the sentence.
正解:
解説:
Explanation:
Graphical user interface, text, application Description automatically generated
質問 # 132
What can you use to view the Microsoft Secure Score for Devices?
- A. Microsoft Defender for Endpoint
- B. Microsoft Defender for Identity
- C. Microsoft Defender for Office 365
- D. Microsoft Defender for Cloud Apps
正解:A
解説:
Microsoft Secure Score for Devices
Artikel
12.05.2022
3 Minuten Lesedauer
Applies to:
Microsoft Defender for Endpoint Plan 2
Microsoft Defender Vulnerability Management
Microsoft 365 Defender
Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
To sign up for the Defender Vulnerability Management public preview or if you have any questions, contact us ([email protected]).
Already have Microsoft Defender for Endpoint P2? Sign up for a free trial of the Defender Vulnerability Management Add-on.
Configuration score is now part of vulnerability management as Microsoft Secure Score for Devices.
Your score for devices is visible in the Defender Vulnerability Management dashboard of the Microsoft 365 Defender portal. A higher Microsoft Secure Score for Devices means your endpoints are more resilient from cybersecurity threat attacks. It reflects the collective security configuration state of your devices across the following categories:
Application
Operating system
Network
Accounts
Security controls
Select a category to go to the Security recommendations page and view the relevant recommendations.
Turn on the Microsoft Secure Score connector
Forward Microsoft Defender for Endpoint signals, giving Microsoft Secure Score visibility into the device security posture. Forwarded data is stored and processed in the same location as your Microsoft Secure Score data.
Changes might take up to a few hours to reflect in the dashboard.
In the navigation pane, go to Settings > Endpoints > General > Advanced features Scroll down to Microsoft Secure Score and toggle the setting to On.
Select Save preferences.
How it works
Microsoft Secure Score for Devices currently supports configurations set via Group Policy. Due to the current partial Intune support, configurations which might have been set through Intune might show up as misconfigured. Contact your IT Administrator to verify the actual configuration status in case your organization is using Intune for secure configuration management.
The data in the Microsoft Secure Score for Devices card is the product of meticulous and ongoing vulnerability discovery process. It is aggregated with configuration discovery assessments that continuously:
Compare collected configurations to the collected benchmarks to discover misconfigured assets Map configurations to vulnerabilities that can be remediated or partially remediated (risk reduction) Collect and maintain best practice configuration benchmarks (vendors, security feeds, internal research teams) Collect and monitor changes of security control configuration state from all assets
質問 # 133
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
正解:
解説:
Reference:
https://docs.microsoft.com/en-us/microsoft-365/compliance/compliance-manager?view=o365-worldwide
質問 # 134
Which service should you use to view your Azure secure score? To answer, select the appropriate service in the answer area.
正解:
解説:
Reference:
https://docs.microsoft.com/en-us/azure/security-center/secure-score-access-and-track
質問 # 135
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
正解:
解説:
Explanation
Graphical user interface, text, application, email Description automatically generated
Box 1: Yes
Azure Defender provides security alerts and advanced threat protection for virtual machines, SQL databases, containers, web applications, your network, your storage, and more Box 2: Yes Cloud security posture management (CSPM) is available for free to all Azure users.
Box 3: Yes
Azure Security Center is a unified infrastructure security management system that strengthens the security posture of your data centers, and provides advanced threat protection across your hybrid workloads in the cloud - whether they're in Azure or not - as well as on premises.
質問 # 136
Which two types of resources can be protected by using Azure Firewall? Each correct answer presents a complete solution.
NOTE: Each correct selection is worth one point.
- A. Azure virtual networks
- B. Azure virtual machines
- C. Microsoft Exchange Online inboxes
- D. Microsoft SharePoint Online sites
- E. Azure Active Directory (Azure AD) users
正解:A、D
解説:
Firewall is really not directly protecting the Virtual Networks though DDOS would have been ideal for VNETS
質問 # 137
What is an assessment in Compliance Manager?
- A. Recommended guidance to help organizations align with their corporate standards.
- B. A policy initiative that includes multiple policies.
- C. A dictionary of words that are not allowed in company documents.
- D. A grouping of controls from a specific regulation, standard or policy.
正解:D
解説:
Explanation
Microsoft Purview Compliance Manager is a feature in the Microsoft Purview compliance portal that helps you manage your organization's compliance requirements with greater ease and convenience. Compliance Manager can help you throughout your compliance journey, from taking inventory of your data protection risks to managing the complexities of implementing controls, staying current with regulations and certifications, and reporting to auditors.
Watch the video below to learn how Compliance Manager can help simplify how your organization manages compliance:
Compliance Manager helps simplify compliance and reduce risk by providing:
Pre-built assessments for common industry and regional standards and regulations, or custom assessments to meet your unique compliance needs (available assessments depend on your licensing agreement; learn more).
Workflow capabilities to help you efficiently complete your risk assessments through a single tool.
Detailed step-by-step guidance on suggested improvement actions to help you comply with the standards and regulations that are most relevant for your organization. For actions that are managed by Microsoft, you'll see implementation details and audit results.
A risk-based compliance score to help you understand your compliance posture by measuring your progress in completing improvement actions.
質問 # 138
Select the answer that correctly completes the sentence.
正解:
解説:

質問 # 139
Select the answer that correctly completes the sentence.
正解:
解説:
Reference:
https://docs.microsoft.com/en-us/cloud-app-security/what-is-cloud-app-security
質問 # 140
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
正解:
解説:

質問 # 141
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
正解:
解説:
Reference:
https://docs.microsoft.com/en-us/azure/governance/policy/overview
質問 # 142
Select the answer that correctly completes the sentence.
正解:
解説:

Reference:
https://docs.microsoft.com/en-us/cloud-app-security/what-is-cloud-app-security
質問 # 143
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
正解:
解説:
Explanation:
Microsoft's shared-responsibility model states that the cloud provider secures the cloud, while the customer secures what they put in the cloud. The Azure Security documentation explains: "Regardless of the type of deployment, you always retain responsibility for your data, endpoints, accounts, and access management." This applies to IaaS, PaaS, and SaaS, so statement 3 is Yes because the organization is always accountable for the security of information and data.
For SaaS, Microsoft describes that customers "don't manage or control the underlying cloud infrastructure- including network, servers, operating systems, or even individual application capabilities" and that the provider handles service maintenance and updates. In SaaS, tasks like patching or applying service packs to the application code are owned by the service provider, while the customer focuses on data, identity, and access. Therefore, statement 1 is No.
For IaaS, Microsoft notes the provider manages the physical estate: "Microsoft is responsible for the physical hosts, network, and datacenter facilities," while the customer configures and secures the guest OS, applications, and network controls within their subscription. Thus, managing the physical network is the cloud provider's duty, making statement 2 Yes.
These SCI principles are foundational to Microsoft Learn/Docs guidance on Azure's shared responsibility:
provider-"security OF the cloud"; customer-"security IN the cloud," with data protection always remaining the customer's responsibility.
質問 # 144
Select the answer that correctly completes the sentence.
正解:
解説:
質問 # 145
Select the answer that correctly completes the sentence.
正解:
解説:

質問 # 146
For each of the following statements, select Yes if the statement is true. Otherwise, select No.
NOTE: Each correct selection is worth one point.
正解:
解説:
Explanation:
Box 1: No
Advanced Audit helps organizations to conduct forensic and compliance investigations by increasing audit log retention.
Box 2: No
Box 3: Yes
質問 # 147
What should you use to ensure that the members of an Azure Active Directory group use multi-factor authentication (MFA) when they sign in?
- A. Azure Active Directory (Azure AD) Privileged Identity Management (PIM)
- B. a conditional access policy
- C. Azure Active Directory (Azure AD) Identity Protection
- D. Azure role-based access control (Azure RBAC)
正解:B
解説:
Explanation
The recommended way to enable and use Azure AD Multi-Factor Authentication is with Conditional Access policies. Conditional Access lets you create and define policies that react to sign-in events and that request additional actions before a user is granted access to an application or service.
質問 # 148
Select the answer that correctly completes the sentence.
正解:
解説:
Explanation:
In the Microsoft 365 security center (now Microsoft 365 Defender), incidents are used to triage and investigate threats across the tenant. Microsoft's security documentation explains that "an incident is a collection of related alerts" that are automatically correlated to give analysts a single, end-to-end view of an attack. Within each incident, the portal surfaces impacted assets such as devices, users, mailboxes, and applications, enabling responders to quickly identify which endpoints are affected by a given alert and to take response actions (isolate device, collect investigation package, run AV scan, etc.). This design allows security teams to move beyond individual alerts and instead work a consolidated investigation that lists affected devices in the incident's Evidence & Response/Assets sections, complete with alert timelines and device details.
By comparison, Secure Score measures the organization's security posture and recommendations; policies are configuration/enforcement objects (e.g., Defender or compliance policies) and are not the investigative view for alerts; classifications relate to information protection labeling rather than alert investigation. Therefore, to identify devices that are affected by an alert, you use the Incidents experience in Microsoft 365 Defender, where correlated alerts show the devices involved alongside the entities and evidence connected to the threat.
Reference:
https://docs.microsoft.com/en-us/microsoft-365/security/defender/incidents-overview?view=o365-worldwide
質問 # 149
Select the answer that correctly completes the sentence.
正解:
解説:

Reference:
https://docs.microsoft.com/en-us/azure/app-service/overview-authentication-authorization
質問 # 150
......
最新の2025年最新の実際に出ると確認されたSC-900問題集で100%無料SC-900試験問題集:https://www.goshiken.com/Microsoft/SC-900-mondaishu.html
無料提供中2025年最新の無料更新されたMicrosoft SC-900試験問題と解答:https://drive.google.com/open?id=1NMNHkQhekmMr_ttDJgPdDRemJa2rejEY