Microsoft Cybersecurity Architect — Question 16
You are designing a ransomware response plan that follows Microsoft Security Best Practices.
You need to recommend a solution to limit the scope of damage of ransomware attacks without being locked out.
What should you include in the recommendation?
Answer options
- A. device compliance policies
- B. Privileged Access Workstations (PAWs)
- C. Customer Lockbox for Microsoft Azure
- D. emergency access accounts
Correct answer: B
Explanation
The correct answer is B, as Privileged Access Workstations (PAWs) are specifically designed to provide a secure environment for administrative tasks, thus mitigating ransomware risks. Options A, C, and D do not directly address the need for a dedicated secure environment for managing sensitive tasks and could potentially leave vulnerabilities open during a ransomware attack.