Microsoft Security Operations Analyst Associate SC-200 Practice Question
You are reviewing a "Potential data theft by departing employee" alert in Microsoft Purview insider risk management. You must inspect the individual files and emails that triggered the policy so you can confirm the user's intent before deciding whether to escalate the alert to an eDiscovery (Premium) case. Which section of the alert page should you use to view the chronological list of risky activities and open each item in the built-in content viewer?
The Overview tab of the insider risk alert
The User activity tab of the insider risk alert
Content explorer in the Data classification workload
Activity explorer in Microsoft Purview Data Loss Prevention
Select the User activity tab on the insider risk alert page. This tab presents a timeline of each risky action that contributed to the alert, and you can choose any entry to open a viewer showing the exact file, email, or other resource involved. The Overview tab only summarizes alert metadata, Content explorer is a separate Microsoft Purview component for browsing sensitive data, and Activity explorer is used for Microsoft Purview DLP analytics, not insider risk alerts.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Microsoft Purview insider risk management?
Open an interactive chat with Bash
How does the User activity tab help in investigating insider risk alerts?
Open an interactive chat with Bash
What is the difference between the User activity tab and the Overview tab in Microsoft Purview insider risk management?
Open an interactive chat with Bash
Microsoft Security Operations Analyst Associate SC-200
Manage incident response
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .