Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Microsoft Exam SC-401 Topic 1 Question 3 Discussion

Actual exam question for Microsoft's SC-401 exam
Question #: 3
Topic #: 1
[All SC-401 Questions]

You have a Microsoft 365 E5 subscription that contains the users shown in the following table.

Which users will Microsoft Purview insider risk management flag as potential high-impact users?

Show Suggested Answer Hide Answer
Suggested Answer: D

Microsoft Purview Insider Risk Management flags high-impact users based on various risk factors, including role, access to confidential data, and influence within an organization. Let's analyze each user:

User1 (Regional Manager, assigned Reader role, manages department managers)

Risk Factors:

Holds a managerial position (regional manager).

Manages multiple department managers, indicating organizational influence.

Access to critical business information.

Flagged? -Yes (Managerial role and access to confidential data).

User2 (HR department manager, no Microsoft Entra roles, manages HR department users)

Risk Factors:

Manages HR department users, meaning they likely handle sensitive employee data.

HR roles are often considered high-risk due to access to personal and payroll data.

Flagged? -Yes (HR role and access to sensitive employee data).

User3 (Developer, reports to User2, only user in compliance, assigned Compliance Administrator role)

Risk Factors:

Compliance Administrator role grants access to sensitive security and regulatory data.

Only person in the compliance department, meaning they hold a critical role.

Potentially high impact on compliance and security settings.

Flagged? -Yes (Privileged Compliance Administrator role).

User4 (Assistant to User1, no Entra roles, handles confidential data on behalf of User1)

Risk Factors:

Handles a high volume of confidential data on behalf of a regional manager.

Assistants with access to sensitive data are considered insider risk candidates.

Flagged? -Yes (High access to sensitive information).

Since all four users fit high-impact criteria (managerial roles, privileged compliance access, handling sensitive data), Microsoft Purview Insider Risk Management will flag all of them.


Contribute your Thoughts:

I think it's User1, User2, and User3 only because they have access to sensitive data.
upvoted 0 times
...
D, of course! Why wouldn't they flag all four users? It's better to be safe than sorry when it comes to insider risk management, am I right?
upvoted 0 times
...
Brianne
3 days ago
I'm not sure, I think it might be User2 and User3 only.
upvoted 0 times
...
Nakisha
4 days ago
I agree with Marla, User1 and User2 seem to be the potential high-impact users.
upvoted 0 times
...
Lynelle
5 days ago
Gotta be option C. Those three users have the most sensitive information and permissions. Microsoft Purview will definitely flag them as potential high-impact users.
upvoted 0 times
...
Marla
7 days ago
I think it's User1 and User2 only.
upvoted 0 times
...
Alana
16 days ago
Hmm, this looks like a tricky one. I'd say User1, User2, and User3 since they seem to have the highest level of access and privileges.
upvoted 0 times
Taryn
3 days ago
I'm not sure, but I think it might be User2 and User3 only.
upvoted 0 times
...
Anglea
4 days ago
I think it's User1 and User2 only, based on their roles.
upvoted 0 times
...
Karl
6 days ago
I agree, User1, User2, and User3 seem to have the most access.
upvoted 0 times
...
...

Save Cancel