🔥 3-day streak
Microsoft Cybersecurity Architect Expert154 / 158
Question 154 of 158

A financial services company is executing the Zero Trust adoption framework. Business units have independently adopted numerous unsanctioned SaaS applications, and the security team lacks visibility into which cloud apps are in use, what data flows to them, and whether session activity can be controlled in real time. Leadership wants a design that both discovers unsanctioned apps and enforces granular runtime controls (such as blocking downloads of sensitive files) within the Applications pillar of Zero Trust. Which design best addresses these requirements?

Reviewed for accuracy · Report an issueNext question