3 real exam-style questions across all 3 official blueprint domains. Answer each question to reveal the full explanation — then see exactly where to focus.
A user reports receiving a suspicious email that bypassed the spam filter. An analyst opens the Microsoft 365 Defender portal to investigate. Which component provides a detailed entity view of the email including delivery actions, phish simulation details, and campaign information?
Select an answer to reveal the explanation and AI Tutor
A security operations analyst is reviewing recommendations in Microsoft Defender for Cloud. For a virtual machine that is missing critical security updates, which recommendation category will highlight this issue?
Select an answer to reveal the explanation and AI Tutor
A security operations analyst is creating a scheduled analytics rule in Microsoft Sentinel to detect brute force attempts on Microsoft Entra ID authentication. Which data source is most appropriate for this rule?
Select an answer to reveal the explanation and AI Tutor
Answer all 3 questions to see your domain score breakdown
AI Tutor after every question, per-domain analytics, spaced repetition, daily challenges — and every other certification on the platform.
Free forever · Every certification included
Yes — all 3 questions on this page are free with no account required. Create a free account to access the full 60-question bank, AI Tutor, domain analytics, and progress tracking. Courseiva is free forever, supported by advertising.
Every question is written by Microsoft-certified engineers against the official SC-200 exam blueprint. Questions follow the same wording style and scenario complexity as the actual exam. They are original questions — not brain dumps — so you learn the underlying concepts, not just memorised answers.
The SC-200 exam contains approximately 60 questions and must be completed within 120 minutes. The passing score is 700/1000.
The SC-200 covers 3 domains: Mitigate threats using Microsoft Defender XDR (null%), Mitigate threats using Microsoft Defender for Cloud (null%), Mitigate threats using Microsoft Sentinel (null%). This practice test includes questions from every domain.