Question 10 - Microsoft Cybersecurity SC-100 Real Exam Questions [March 2026 Update]

Q: 10

You have a multicloud environment that contains an Azure subscription, an Amazon Web Services (AWS) subscription, and a Google Cloud Platform (GCP) subscription. You plan to assess data security and compliance. You need to design a Compliance Manager solution that meets the following requirements: • Provides recommended improvement actions that include detailed implementation guidance • Automatically monitors regulatory compliance • Minimizes administrative effort What should you include in the solution?

Options

Discussion

Ethan G. Feb 22, 2026 1:33 am

A is the better pick. Defender for Cloud actually covers regulatory monitoring and gives actionable recommendations with guidance for all three clouds, not just Azure. D seems like a trap since connectors alone don't automate compliance checks. I think I'm right, but open to other views.

Sanjay G. Feb 20, 2026 9:02 am

C or D? I know Sentinel does a lot for monitoring but not really compliance actions, and those connectors seem only partial. But honestly A (Defender for Cloud) ticks the automation and cross-cloud boxes, right? Not totally sure since sometimes D gets mentioned for Compliance Manager setups. If anyone's got hands-on experience, chime in!

Olivia Feb 27, 2026 9:42 am

Nah, D is just a connector and doesn't handle the automation piece. A works better for multicloud monitoring here.

Jordan N. Feb 19, 2026 8:02 pm

A . Not positive but Defender for Cloud is what handles continuous compliance checks and automated guidance across multiple clouds.

SharpAuditor5559 Feb 20, 2026 7:17 pm

Its A

EthanN Feb 15, 2026 7:04 pm

A is wrong, it's actually A. Defender for Cloud not only scans Azure but also hooks into AWS and GCP, giving compliance recommendations and monitoring out of the box. The connectors (D) just provide data flow, not automated tracking or real guidance. Pretty confident but open to corrections.

Luna E. Feb 25, 2026 1:59 am

Its A. If you want automatic regulatory monitoring across all three clouds, only Defender for Cloud actually does that.

QuietAuditor5488 Feb 20, 2026 6:31 am

Pretty sure it's A for this one. Defender for Cloud integrates with AWS and GCP, does automatic compliance assessments, and gives you improvement actions with guidance. D (the connectors) just let you pull stuff in, they don't actually automate the monitoring part. If anyone thinks D works better here, let me know-but I think A fits all the requirements best.

Karan F. Feb 27, 2026 6:06 am

A tbh, D is tempting but it doesn't actually automate compliance checks across clouds. Saw similar on practice tests.

Nora R. Mar 5, 2026 5:25 am

Makes sense to pick A for this since Defender for Cloud actually does continuous posture assessment across those clouds and spits out remediation steps. D just connects data, not as automated. Pretty sure it's A but open to other arguments.

Be respectful. No spam.

Correct Answer:

Explanation

Microsoft Defender for Cloud is a Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platform (CWPP) solution. It extends its capabilities beyond Azure to multicloud environments, including Amazon Web Services (AWS) and Google Cloud Platform (GCP). By connecting AWS and GCP accounts to Defender for Cloud, you can continuously assess their security posture against regulatory compliance standards. Defender for Cloud automatically provides prioritized security recommendations (improvement actions) with detailed implementation guidance. These assessments and recommendations directly contribute to the technical control status within Microsoft Purview Compliance Manager, thus automating compliance monitoring and minimizing administrative effort for the multicloud environment.

Why Incorrect

B. Microsoft Defender for Cloud Apps: This is a Cloud Access Security Broker (CASB) focused on securing SaaS applications, not the underlying IaaS/PaaS infrastructure of AWS and GCP for regulatory compliance posture.

C. Microsoft Sentinel: This is a SIEM/SOAR solution for threat detection and response. While it can ingest logs from multicloud environments, its primary function is not compliance posture management or providing improvement actions.

D. Compliance Manager connectors: While connectors are a concept, Microsoft Defender for Cloud is the specific, primary service that provides the multicloud CSPM capabilities required to connect AWS and GCP for automated compliance assessment.

References

1. Microsoft Documentation - Microsoft Defender for Cloud: "Connect your AWS accounts to Microsoft Defender for Cloud". This document details how Defender for Cloud integrates with AWS to provide CSPM. It states

"When you connect your AWS accounts to Defender for Cloud

you're integrating AWS Security Hub with Defender for Cloud. Defender for Cloud thus provides visibility and protection across both of these cloud environments to provide: ... Compliance with regulatory standards."

Source: Microsoft Learn

"Connect your AWS accounts to Microsoft Defender for Cloud"

Introduction section.

2. Microsoft Documentation - Microsoft Defender for Cloud: "Connect your GCP projects to Microsoft Defender for Cloud". This document explains the integration with GCP. It mentions

"When you connect your GCP projects to Microsoft Defender for Cloud

you are integrating GCP Security Command Center with Defender for Cloud... You get recommendations from Defender for Cloud that help you protect your resources in line with Microsoft cloud security benchmark."

Source: Microsoft Learn

"Connect your GCP projects to Microsoft Defender for Cloud"

Introduction section.

3. Microsoft Documentation - Microsoft Purview Compliance Manager: "Microsoft Purview Compliance Manager and Microsoft Defender for Cloud". This document explains the integration. It states

"Defender for Cloud's regulatory compliance dashboard provides insights into your compliance posture based on continuous assessments of your Azure and hybrid environments... The integration of Defender for Cloud with Compliance Manager allows you to get a single view of your overall compliance posture."

Source: Microsoft Learn

"Microsoft Purview Compliance Manager and Microsoft Defender for Cloud"

How the integration works section.

Premium Access Includes

FLASH OFFER

avail 10% DISCOUNT on YOUR PURCHASE