This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Answer the following questions to check your understanding of regulatory compliance in Microsoft Defender for Cloud.
Contoso Healthcare's security engineer needs to access the regulatory compliance dashboard to review control gaps. The engineer has the Security Reader role assigned on the subscription. What access does this role provide to the compliance dashboard?
Full access—Security Reader can view all compliance data and control details.
Partial access—Security Reader can view the dashboard but not remediation steps.
No access—the Reader role on the subscription is required to view compliance data.
No access—only the Security Admin role can view compliance data.
Contoso Healthcare's compliance team wants to track adherence to ISO 27001 alongside the default Microsoft Cloud Security Benchmark. The team enables the ISO 27001 standard in the regulatory compliance dashboard but no resources appear against it. What is the most likely reason?
ISO 27001 isn't supported in the Defender for Cloud compliance dashboard.
The subscription has no relevant resources assessed against the ISO 27001 controls.
ISO 27001 requires Defender Cloud Security Posture Management (CSPM) to be enabled before it appears in the dashboard.
The standard assignment must be made at the management group level to populate resources.
Contoso Healthcare's security team investigates a control in the ISO 27001 standard and finds it grayed out in the dashboard. What does a grayed-out control indicate?
The control has no failing resources—all assessed resources are compliant.
Defender for Cloud can't automatically assess the control.
The control requires Defender CSPM to be enabled before assessments run.
The control applies only to non-Azure cloud environments and isn't relevant to Azure subscriptions.
Contoso Healthcare adds any standard to the Defender for Cloud regulatory compliance dashboard and wants the same compliance improvement actions to also appear in their broader compliance management platform for all digital assets—not just Azure. Which integration automatically surfaces Defender for Cloud compliance data in a unified cross-asset compliance view?
Microsoft Sentinel
Microsoft Purview Compliance Manager
Microsoft Defender XDR
Azure Policy
You must answer all questions before checking your work.
Was this page helpful?
Need help with this topic?
Want to try using Ask Learn to clarify or guide you through this topic?