AZ-500 Secure data and applications

Two designs were proposed. Design A would assess regulatory compliance. Design B would prioritize remediations from secure score. The team must pick the approach aligned with vendor best practices. Which choice is correct?

Multiple choice — select one answer

Answer choices

  1. a. Ignore frameworks (not recommended for production workloads)
  2. b. No scans (not recommended for production workloads)
  3. c. Microsoft Defender for Cloud regulatory compliance
  4. d. Defender for Cloud recommendations

Architectural breakdown & explanation

Regulatory dashboard maps controls. Compare with Defender for Cloud recommendations: Recommendations map to MITRE and best practices.

Correct answer(s): c. Microsoft Defender for Cloud regulatory compliance

Exam domain: Secure data and applications (20% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the Microsoft Azure Security Engineer Associate bank. Run a full timed practice exam with domain-weighted random questions in your browser.