시험덤프
매달, 우리는 1000명 이상의 사람들이 시험 준비를 잘하고 시험을 잘 통과할 수 있도록 도와줍니다.
  / SC-730 덤프  / SC-730 문제 연습

Microsoft SC-730 시험

Cybersecurity Business Professional (beta) 온라인 연습

최종 업데이트 시간: 2026년06월29일

당신은 온라인 연습 문제를 통해 Microsoft SC-730 시험지식에 대해 자신이 어떻게 알고 있는지 파악한 후 시험 참가 신청 여부를 결정할 수 있다.

시험을 100% 합격하고 시험 준비 시간을 35% 절약하기를 바라며 SC-730 덤프 (최신 실제 시험 문제)를 사용 선택하여 현재 최신 70개의 시험 문제와 답을 포함하십시오.

 / 4

Question No : 1


Why is it essential for business professionals to maintain continuous awareness of evolving cyber threats through organizational training, even if they are not IT staff?

정답:
Explanation:
The SC-730 exam emphasizes that cybersecurity is everyone's responsibility. Threat actors frequently target business professionals (HR, Sales, Finance) because they have access to sensitive data and funds but may lack deep technical knowledge. Continuous awareness ensures employees can recognize modern psychological manipulation tactics and safely handle data.

Question No : 2


While reviewing financial spreadsheets, your screen suddenly flashes, and all your files change to .locked. A window appears demanding a cryptocurrency payment.
What is the critical first step you must take?

정답:
Explanation:
In the event of a ransomware attack, time is of the essence. Your very first action must be containment. Disconnecting the device from the network entirely prevents the malicious software from communicating with its command server and completely halts its ability to move laterally and infect shared drives or other computers.

Question No : 3


You notice a coworker quietly copying a massive folder of confidential, unreleased product designs onto a personal, unencrypted USB flash drive.
Which reporting channel is most appropriate for this policy violation?

정답:
Explanation:
Security policy violations or potential insider threats must be reported through appropriate, secure reporting channels (like a designated incident form, security email, or HR). Confronting the person directly or publicly posting about it can escalate the situation unprofessionally, destroy forensic evidence, or tip off a malicious actor to hide their tracks.

Question No : 4


Under which of the following circumstances is formal "escalation" to senior management or the legal department strictly required during a security event?

정답:
Explanation:
Most minor issues (like locked accounts or printer jams) can be handled by the standard IT helpdesk. However, incidents involving significant exposure of highly regulated data (such as PII or PCI financial data) carry severe legal and regulatory consequences. These must be immediately escalated to specialized incident response teams, legal counsel, and senior management.

Question No : 5


You realize that a SharePoint folder containing highly sensitive employee medical records has been accidentally configured with an "Anyone with the link can view" permission.
What is the most immediate action you must take?

정답:
Explanation:
During a potential data breach, containment is your absolute first priority. By immediately revoking the sharing link (stopping the sharing of data), you halt any further unauthorized access. You must then notify the security team so they can check the audit logs to determine if anyone actually accessed the files while the link was active.

Question No : 6


Why is it highly encouraged to report a "near miss" security event, such as spotting a sophisticated phishing email even if you successfully avoided clicking the malicious link?

정답:
Explanation:
A near miss provides valuable threat intelligence. If you received a targeted phishing email, it is highly likely that other colleagues received it as well. Reporting it allows the IT team to proactively block the malicious domain and remove the email from your colleagues' inboxes before someone else makes a mistake.

Question No : 7


You witness a stranger without an employee ID badge closely follow an authorized employee through a secure, keycard-access door.
What is the appropriate action?

정답:
Explanation:
This physical social engineering attack is known as "tailgating" or "piggybacking." As a business professional, you share the responsibility for physical security. You must immediately report the breach to security personnel so they can intercept the unauthorized individual.

Question No : 8


Which of the following situations describes an "unauthorized access" incident that you are strictly obligated to report?

정답:
Explanation:
Sharing credentials violates fundamental access control and accountability policies. Even if the person asking is a colleague, they are attempting to bypass security controls to access a system they do not have explicit authorization for. This constitutes a severe insider risk that must be reported.

Question No : 9


Under which of the following circumstances is formal "escalation" to senior management, the legal department, or a specialized incident response team strictly required?

정답:
Explanation:
Escalation is required when an incident has a severe impact, involves significant data exposure (such as PII or PCI financial data), or triggers legal and compliance obligations. The public exposure of customer credit card numbers requires immediate executive and legal involvement.

Question No : 10


You accidentally click a suspicious link in an email, and a strange command window suddenly opens while unknown files begin downloading.
What is the very first step you should take?

정답:
Explanation:
In the event of an active malware or ransomware infection, the absolute primary goal is containment. Disconnecting the device from the network (unplugging the Ethernet cable or disabling Wi-Fi) prevents the malware from communicating with the attacker or spreading laterally to other systems.

Question No : 11


When submitting an incident report to the IT helpdesk about a suspicious email, which specific combination of information is the most critical for their investigation?

정답:
Explanation:
An effective incident report needs actionable facts. The security team needs to know the exact timeframe and sender to trace server logs, and most importantly, whether you clicked a link ("blast radius") to determine if your machine needs to be immediately isolated.

Question No : 12


You receive an email that looks like a targeted phishing attempt. You have NOT clicked on any links or attachments.
What is the safest and most appropriate way to report this?

정답:
Explanation:
Using the built-in "Report Phishing" button or a dedicated security inbox securely packages the email's hidden headers and metadata. This allows the security operations team to analyze the threat safely and proactively block the sender's domain across the entire organization.

Question No : 13


While traveling home on the subway, you realize your corporate laptop, which has access to the internal network, is missing.
What is your immediate responsibility?

정답:
Explanation:
A lost corporate device is a significant security incident that requires immediate reporting. Promptly notifying the IT department allows them to track the device, revoke its access tokens, and issue a "remote wipe" command to permanently destroy the corporate data before an attacker can extract it.

Question No : 14


You need to send a highly sensitive merger document to a specific external partner, but you want to ensure they cannot print, copy, or forward the document to anyone else.
What security feature should you apply?

정답:
Explanation:
Information Rights Management (IRM) enforces access policies at the file level. Combined with sensitivity labels, it allows the creator to restrict specific actions such as printing, copying text, or forwarding the document, even after the file has left the organization's network perimeter.

Question No : 15


You are drafting an internal email about the upcoming corporate holiday party schedule. There are no trade secrets or customer data involved.
Which document sensitivity label is most appropriate?

정답:
Explanation:
Sensitivity labels help apply the correct level of protection based on data classification. A routine holiday party schedule is not highly confidential, but it shouldn't be posted on the public internet either. "Internal" or "General" is the correct classification for standard everyday corporate communications.

 / 4