Which Azure service can help her in detecting the severity and creating alerts?

Georgia Lyman is a cloud security engineer; she wants to detect unusual activities in her organizational Azure account. For this, she wants to create alerts for unauthorized activities with their severity level to prioritize the alert that should be investigated first.

Which Azure service can help her in detecting the severity and creating alerts?
A . Windows Defender
B . Cloud Operations Suite
C . Microsoft Defender for Cloud
D . Cloud DLP

View Answer

Answer: C

Explanation:

Microsoft Defender for Cloud is the service that can assist Georgia Lyman in detecting unusual activities within her organizational Azure account and creating alerts with severity levels. Detection of Unusual Activities: Microsoft Defender for Cloud provides advanced threat protection, which includes the detection of unusual activities based on behavioral analytics and anomaly detection1.

Alert Creation: It allows the creation of custom alerts for unauthorized activities, which can be configured with specific severity levels to prioritize the investigation process1.

Severity Level Prioritization: The service enables setting severity levels for alerts, ensuring that high-priority issues are analyzed first and appropriate actions are taken in a timely manner2.

Monitoring and Management: With Microsoft Defender for Cloud, Georgia can view and manage the security posture of her Azure resources from a single centralized dashboard, making it easier to monitor and respond to potential threats1.

Reference: Microsoft Defender for Cloud is an integrated tool for Azure security management, providing threat protection, alerting, and security posture management across Azure services1. It is designed to help cloud security engineers like Georgia Lyman detect and respond to security threats effectively.