SC-200 Manage a security operations environment • Set 13
SC-200 Manage a security operations environment Practice Test 13 — 15 questions with explanations. Free, no signup.
You are the security analyst for a company that uses Microsoft Sentinel. You notice that a critical analytics rule has not generated any incidents in the past week, but you know that relevant logs are being ingested. You need to troubleshoot why the rule is not firing. What is the first step you should take?