Cybersecurity Business Professional (beta) 온라인 연습
최종 업데이트 시간: 2026년06월29일
당신은 온라인 연습 문제를 통해 Microsoft SC-730 시험지식에 대해 자신이 어떻게 알고 있는지 파악한 후 시험 참가 신청 여부를 결정할 수 있다.
시험을 100% 합격하고 시험 준비 시간을 35% 절약하기를 바라며 SC-730 덤프 (최신 실제 시험 문제)를 사용 선택하여 현재 최신 70개의 시험 문제와 답을 포함하십시오.
정답:
Explanation:
The SC-730 exam emphasizes that cybersecurity is everyone's responsibility. Threat actors frequently target business professionals (HR, Sales, Finance) because they have access to sensitive data and funds but may lack deep technical knowledge. Continuous awareness ensures employees can recognize modern psychological manipulation tactics and safely handle data.
정답:
Explanation:
In the event of a ransomware attack, time is of the essence. Your very first action must be containment. Disconnecting the device from the network entirely prevents the malicious software from communicating with its command server and completely halts its ability to move laterally and infect shared drives or other computers.
정답:
Explanation:
Security policy violations or potential insider threats must be reported through appropriate, secure reporting channels (like a designated incident form, security email, or HR). Confronting the person directly or publicly posting about it can escalate the situation unprofessionally, destroy forensic evidence, or tip off a malicious actor to hide their tracks.
정답:
Explanation:
Most minor issues (like locked accounts or printer jams) can be handled by the standard IT helpdesk. However, incidents involving significant exposure of highly regulated data (such as PII or PCI financial data) carry severe legal and regulatory consequences. These must be immediately escalated to specialized incident response teams, legal counsel, and senior management.
정답:
Explanation:
During a potential data breach, containment is your absolute first priority. By immediately revoking the sharing link (stopping the sharing of data), you halt any further unauthorized access. You must then notify the security team so they can check the audit logs to determine if anyone actually accessed the files while the link was active.
정답:
Explanation:
A near miss provides valuable threat intelligence. If you received a targeted phishing email, it is highly likely that other colleagues received it as well. Reporting it allows the IT team to proactively block the malicious domain and remove the email from your colleagues' inboxes before someone else makes a mistake.
정답:
Explanation:
This physical social engineering attack is known as "tailgating" or "piggybacking." As a business professional, you share the responsibility for physical security. You must immediately report the breach to security personnel so they can intercept the unauthorized individual.
정답:
Explanation:
Sharing credentials violates fundamental access control and accountability policies. Even if the person asking is a colleague, they are attempting to bypass security controls to access a system they do not have explicit authorization for. This constitutes a severe insider risk that must be reported.
정답:
Explanation:
Escalation is required when an incident has a severe impact, involves significant data exposure (such as PII or PCI financial data), or triggers legal and compliance obligations. The public exposure of customer credit card numbers requires immediate executive and legal involvement.
정답:
Explanation:
In the event of an active malware or ransomware infection, the absolute primary goal is containment. Disconnecting the device from the network (unplugging the Ethernet cable or disabling Wi-Fi) prevents the malware from communicating with the attacker or spreading laterally to other systems.
정답:
Explanation:
An effective incident report needs actionable facts. The security team needs to know the exact timeframe and sender to trace server logs, and most importantly, whether you clicked a link ("blast radius") to determine if your machine needs to be immediately isolated.
정답:
Explanation:
Using the built-in "Report Phishing" button or a dedicated security inbox securely packages the email's hidden headers and metadata. This allows the security operations team to analyze the threat safely and proactively block the sender's domain across the entire organization.
정답:
Explanation:
A lost corporate device is a significant security incident that requires immediate reporting. Promptly notifying the IT department allows them to track the device, revoke its access tokens, and issue a "remote wipe" command to permanently destroy the corporate data before an attacker can extract it.
정답:
Explanation:
Information Rights Management (IRM) enforces access policies at the file level. Combined with sensitivity labels, it allows the creator to restrict specific actions such as printing, copying text, or forwarding the document, even after the file has left the organization's network perimeter.
정답:
Explanation:
Sensitivity labels help apply the correct level of protection based on data classification. A routine holiday party schedule is not highly confidential, but it shouldn't be posted on the public internet either. "Internal" or "General" is the correct classification for standard everyday corporate communications.