🔥 3-day streak
Microsoft Cybersecurity Architect Expert80 / 158
Question 80 of 158

A global manufacturing company is designing its security operations capability based on the Microsoft Cybersecurity Reference Architectures (MCRA). The CISO wants the SOC to consume curated threat intelligence that automatically enriches detections and enables proactive hunting across email, endpoints, identities, and cloud apps. The architecture must minimize custom integration effort and use Microsoft's native, vendor-provided intelligence feeds. Which design approach best aligns with the MCRA for integrating threat intelligence into security operations?

Reviewed for accuracy · Report an issueNext question