Microsoft Exam SC-100 Topic 10 Question 33 Discussion

Actual exam question for Microsoft's SC-100 exam

Question #: 33
Topic #: 10

Your company plans to follow DevSecOps best practices of the Microsoft Cloud Adoption Framework for Azure.

You need to perform threat modeling by using a top-down approach based on the Microsoft Cloud Adoption Framework for Azure.

What should you use to start the threat modeling process?

Athe STRIDE model

Bthe DREAD model

COWASP threat modeling

Show Suggested Answer

Suggested Answer: A, D

by Jerry at Dec 22, 2023, 05:12 PM

Limited Time Offer

25%

Off

Get Premium SC-100 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Lorriane

13 hours ago

I agree with Twila, the STRIDE model is a good starting point for threat modeling.

upvoted 0 times

...

Twila

2 days ago

I think we should use the STRIDE model to start the threat modeling process.

upvoted 0 times

...

Magdalene

4 days ago

The DREAD model? Really? I thought that was old news. Let's stick to something more modern and relevant, like the STRIDE model.

upvoted 0 times

...

Oneida

5 days ago

I personally prefer the OWASP threat modeling approach, as it provides a comprehensive framework for identifying security threats.

upvoted 0 times

...

Lawrence

5 days ago

OWASP threat modeling seems like a good option too, but I'm not sure if it's the best fit for this specific scenario. The Microsoft Cloud Adoption Framework is the focus here.

upvoted 0 times

...

Dana

5 days ago

I agree with Crissy, the STRIDE model is a good starting point for threat modeling.

upvoted 0 times

...

Verdell

6 days ago

I think the STRIDE model is the way to go. It's a well-established framework for threat modeling, and it aligns perfectly with the Microsoft Cloud Adoption Framework.

upvoted 0 times

...

Crissy

8 days ago

I think we should use the STRIDE model to start the threat modeling process.

upvoted 0 times

...