A security compliance requirement states that specific environments that handle sensitive data must be protected by need-to-know restrictions and can only connect to authorized endpoints. The requirement also states that a DLP solution within the environment must be used to control the data from leaving the environment.

Which of the following should be implemented for privileged users so they can support the environment from their workstations while remaining compliant?

1. NAC to control authorized endpoints
2. FIM on the servers storing the data
3. A jump box in the screened subnet
4. A general VPN solution to the primary network

URGENT support required :

An energy company is required to report the average pressure of natural gas used over the past quarter. A PLC sends data to a historian server that creates the required reports.

Which of the following historian server locations will allow the business to get the required reports in an and IT environment?

Options: A In the environment, use a VPN from the IT environment into the environment.
B In the environment, allow IT traffic into the environment.
C In the IT environment, allow PLCs to send data from the environment to the IT environment.
D Use a screened subnet between the and IT environments.    

A home automation company just purchased and installed tools for its SOC to enable incident identification and response on software the company develops. The company would like to prioritize defenses against the following attack scenarios:

✑ Unauthorized insertions into application development environments

✑ Authorized insiders making unauthorized changes to environment configurations

Which of the following actions will enable the data feeds needed to detect these types of attacks on development environments? (Choose two.)

1. Perform static code analysis of committed code and generate summary reports.
2. Implement an XML gateway and monitor for policy violations.
3. Monitor dependency management tools and report on susceptible third-party libraries.
4. Install an IDS on the development subnet and passively monitor for vulnerable services.
5. Model user behavior and monitor for deviations from normal.
6. Continuously monitor code commits to repositories and generate summary logs.

You evaluate an integration with a Microsoft Azure Service Bus instance by using a service endpoint and SAS key authentication.

You register a service endpoint step to send contact records to the Azure Service Bus instance when records are deleted. You deploy all components to a new environment.

You need update the SAS key.

Where should you update the SAS key?

Select only one answer.

A.  Environment variable

B.  Secure configuration of the service endpoint step

C.  Azure Service Bus shared access policies

D.  Service endpoint registration