1. Home
  2. Discussions
  3. Microsoft
  4. Microsoft Certified: Security Operations Analyst Associate
  5. SC-200 Discussions
  6. SC-200 Exam Topic 2 Question 10 Discussion

Microsoft Security Operations Analyst SC-200 Question # 10 Topic 2 Discussion

 Microsoft Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Microsoft Security Operations Analyst SC-200 Question # 10 Topic 2 Discussion

SC-200 Exam Topic 2 Question 10 Discussion:
Question #: 10
Topic #: 2

You need to ensure that the processing of incidents generated by rulequery1 meets the Microsoft Sentinel requirements.

What should you create first?
A.

a playbook with an incident trigger

B.

a playbook with an entity trigger

C.

an Azure Automation rule

D.

a playbook with an alert trigger

Get Premium SC-200 Questions
Actual exam question for Microsoft SC-200 exam by Zephyr93460 at Aug 2, 2025, 12:00:00 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next