Question 15 of 98 from exam SC-400: Microsoft Information Protection Administrator

Question 15 of 98 from exam SC-400: Microsoft Information Protection Administrator

Prev Question Next Question

Question

A user reports that she can no longer access a Microsoft Excel file named Northwind Customer Data.xlsx.

From the Cloud App Security portal, you discover the alert shown in the exhibit.

> ‘i ii /21/20 1:10 PI ie Alerts » & File containing PCI detected in the clou.... 11/21/20 110 PM +30 MEDIUM SEVERITY 's File containing PCI detected in the cloud (built-in DLP engine) @ Microsoft SharePoint Online a Megan Bowen 1D Northwind Customer Data xisx Resolution options: | Northwind Customer Dataxlsx » | @ File is in quarantine | 2 Megan Bowen» | [SESS Description File policy “File containing PCI detected in the cloud (built-in DLP engine)" was matched by "Northwind Customer Data.xlsx" Important information + This alert falls under the following MITRE tactic: Execution Files No files found + || Be File name Owner App Collaborators Policies Last modified File policy report File Quarantined O History a 1-1of 1 files File name Owner App Collaborators Policies Last modified [Bi Northwind Custo... @) Megan Bowen @ Microsoft Share... 5 collaborators 1 policy match Nov 21,2020 9

You restore the file from quarantine.

You need to prevent files that match the policy from being quarantined.

Files that match the policy must generate an alert.

What should you do?

Answers

Explanations

Prev Question Next Question