You have an Azure subscription that uses Microsoft Sentinel.
You need to minimize the administrative effort required to respond to the incidents and remediate the security threats detected by Microsoft Sentinel.
Which two features should you use? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.
To minimize the administrative effort required to respond to incidents and remediate security threats detected by Microsoft Sentinel, you should use Microsoft Sentinel automation rules and Microsoft Sentinel playbooks. Automation rules simplify the process of managing incident responses by applying predefined actions automatically when certain conditions are met. Sentinel playbooks can execute a series of automated actions to respond to and remediate threats more efficiently, integrating with various services and systems for comprehensive incident handling.
for me B and D
By using Microsoft Sentinel automation rules and Microsoft Sentinel playbooks, you can effectively automate the detection, response, and remediation processes, reducing the manual effort required and ensuring quicker and more consistent handling of security incidents.
same question as 37 topic 3