🔥 3-day streak
Microsoft Security Operations Analyst3 / 190
Question 3 of 190

Your organization uses Microsoft Defender for Cloud with security alerts streamed into Microsoft Defender XDR. During an incident investigation in the Defender portal, you see a correlated incident that includes a Defender for Cloud alert titled "Suspicious download of multiple files from a storage account." You need to view the affected Azure resource, understand the recommended remediation, and take action on the underlying cloud workload. Where should you go to review the resource's security posture recommendations and apply hardening guidance related to this alert?

Reviewed for accuracy · Report an issueNext question