Provides advanced protection against phishing, malware, and
zero-day threats across email, links, and attachments.
Question 1: Which Microsoft 365 feature helps prevent accidental sharing of sensitive information?
- A. Microsoft Defender for Endpoint
- B. Data Loss Prevention (DLP) ✅
- C. Microsoft Intune
- D. Azure AD Connect
Explanation: DLP policies detect and prevent sensitive data from being shared outside the organization.
Question 2: Which tool is used to manage mobile device security in Microsoft 365?
- A. Azure Information Protection
- B. Microsoft Defender for Identity
- C. Microsoft Intune ✅
- D. Exchange Admin Center
Explanation: Microsoft Intune enables mobile device management (MDM) and mobile application management (MAM).
Question 3: What is the purpose of Conditional Access in Azure Active Directory?
- A. Assign licenses automatically
- B. Control access based on conditions ✅
- C. Encrypt emails
- D. Backup user data
Explanation: Conditional Access enforces access controls based on user, device, location, and risk.
Question 4: Which Microsoft service protects against phishing and malicious email attachments?
- A. Microsoft Defender for Office 365 ✅
- B. Microsoft Purview
- C. Microsoft Intune
- D. Azure Firewall
Explanation: Defender for Office 365 provides protection against phishing, malware, and unsafe links.
Question 5: Which feature allows classifying and labeling sensitive data in Microsoft 365?
- A. Microsoft Secure Score
- B. Sensitivity Labels ✅
- C. Compliance Manager
- D. Azure Key Vault
Explanation: Sensitivity labels classify and protect data by applying encryption, markings, and access controls.
Download/Practice full MS-500 exam questions..