🔥 3-day streak
Microsoft Cybersecurity Architect Expert2 / 158
Question 2 of 158

A retail company runs its e-commerce platform on Azure Kubernetes Service (AKS). The security architect must design controls that (1) prevent deployment of container images with known critical vulnerabilities, (2) detect runtime threats such as web shell activity and crypto-mining inside running pods, and (3) enforce Kubernetes hardening recommendations like blocking privileged containers. The solution should minimize custom tooling and integrate with the organization's existing Defender for Cloud posture. Which combination of controls best meets these requirements?

Reviewed for accuracy · Report an issueNext question