AZ-500 Secure data and applications

Two designs were proposed. Design A would prioritize remediations from secure score. Design B would assess regulatory compliance. The team must pick the approach aligned with vendor best practices. Which choice is correct?

Multiple choice — select one answer

Answer choices

  1. a. Disable scanning (not recommended for production workloads)
  2. b. Microsoft Defender for Cloud regulatory compliance
  3. c. Ignore findings (not recommended for production workloads)
  4. d. Defender for Cloud recommendations

Architectural breakdown & explanation

Recommendations map to MITRE and best practices. Compare with Microsoft Defender for Cloud regulatory compliance: Regulatory dashboard maps controls.

Correct answer(s): d. Defender for Cloud recommendations

Exam domain: Secure data and applications (20% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the Microsoft Azure Security Engineer Associate bank. Run a full timed practice exam with domain-weighted random questions in your browser.