Microsoft Cybersecurity Architect — Question 94

You have an Azure subscription. The subscription contains 100 virtual machines that run Linux on Windows Server. The subscription uses Microsoft Defender for Servers Plan 1.

You need to recommend a solution to identify and remediate virtual machines that have the following characteristics:

• Are NOT onboarded to Defender for Servers
• Are missing critical updates
• Have risky apps installed

The solution must minimize administrative effort.

What should you include in the recommendation?

Answer options

• A. Microsoft Defender External Attack Surface Management (Defender EASM)
• B. Microsoft Defender Vulnerability Management
• C. Microsoft Defender Threat Intelligence (Defender TI)
• D. Microsoft Intune Advanced Analytics

Correct answer: B

Explanation

The correct answer is B, Microsoft Defender Vulnerability Management, as it effectively identifies vulnerabilities, including missing updates and risky applications on virtual machines. Options A, C, and D do not specifically focus on the comprehensive identification and remediation of vulnerabilities and compliance issues as required in this scenario.