🔥 3-day streak
Microsoft Cybersecurity Architect Expert136 / 158
Question 136 of 158
A financial services company is finalizing the Well-Architected Framework review for a new Azure workload. The security team requires that all security-relevant logs (sign-ins, resource activity, and Defender alerts) be retained for 2 years to meet regulatory investigation requirements, while the cost team is concerned about escalating Log Analytics workspace ingestion and retention charges. The architect must reconcile the WAF Security pillar with the Cost Optimization pillar. Which approach best balances these competing priorities?
Reviewed for accuracy · Report an issueNext question