Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

HomeCertificationsSC-200Exam Domains

Microsoft · Official Blueprint · Last reviewed May 2026

SC-200 Exam Domains & Blueprint

The official Microsoft SC-200 exam covers 6 domains. The vendor does not publish percentage weights for these domains — treat each as an equal part of the exam blueprint.

Exam OverviewPractice TestStudy GuideSample QuestionsExam Domains

SC-200 Domain Weight Summary

#DomainWeightQuestions
1Manage a security operations environment
—
554 practice Q
2Respond to security incidents
—
489 practice Q
3Perform threat hunting
—
276 practice Q
4Mitigate threats using Microsoft Defender XDR
—
108 practice Q
5Mitigate threats using Microsoft Defender for Cloud
—
104 practice Q
6Mitigate threats using Microsoft Sentinel
—
108 practice Q

Detailed Domain Breakdown

Domain 1: Manage a security operations environment

554 practice questions

Incident response lifecycle, digital forensics, threat hunting, SIEM/SOAR tools, log analysis, and security automation.

Practice Manage a security operations environment questions

Domain 2: Respond to security incidents

489 practice questions

Covers the topics, concepts, and applied skills examined under the Respond to security incidents domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Respond to security incidents questions

Domain 3: Perform threat hunting

276 practice questions

Covers the topics, concepts, and applied skills examined under the Perform threat hunting domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Perform threat hunting questions

Domain 4: Mitigate threats using Microsoft Defender XDR

108 practice questions

Covers the topics, concepts, and applied skills examined under the Mitigate threats using Microsoft Defender XDR domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Mitigate threats using Microsoft Defender XDR questions

Domain 5: Mitigate threats using Microsoft Defender for Cloud

104 practice questions

Covers the topics, concepts, and applied skills examined under the Mitigate threats using Microsoft Defender for Cloud domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Mitigate threats using Microsoft Defender for Cloud questions

Domain 6: Mitigate threats using Microsoft Sentinel

108 practice questions

Covers the topics, concepts, and applied skills examined under the Mitigate threats using Microsoft Sentinel domain. Study the official exam objectives and practise questions in this area to build confidence and accuracy before your exam.

Practice Mitigate threats using Microsoft Sentinel questions

How to Use Domain Weights in Your Study Plan

The vendor does not currently publish percentage weights for these domains, so Courseiva does not rank them by weight.

Work through each domain systematically — cover fundamentals first, then applied and scenario-based topics.

Never skip a domain regardless of perceived importance. Full coverage is required to pass.

Use Courseiva domain analytics to track your accuracy per domain and route extra questions to your weak areas.

Practice every SC-200 domain

Courseiva tracks your accuracy per domain automatically and routes you toward your weakest areas — no manual configuration needed.

Free Practice TestStart Practising

SC-200 Concept Guides

SC-200 Security Ops

SC-200 is Microsoft's Security Operations Analyst certification.

Related Exam Domains

AZ-500

Azure Security Engineer

SC-900

Security Fundamentals

CS0-003

CompTIA CySA+