Practice free →
HomeAzure AZ-900cloudcomputingidentitysecurity › The defense-in-depth model recommends:

The defense-in-depth model recommends:

AInvesting all security budget into one extremely strong layer (usually the firewall) and ignoring the others
BReplacing every encryption algorithm every 90 days regardless of need
CDeleting all logs to prevent attackers from learning the environment
DLayering multiple independent security controls — physical, identity, network, compute, application, data — so a single failure doesn't compromise the whole stack
Answer & Solution
Correct answer: D. Layering multiple independent security controls — physical, identity, network, compute, application, data — so a single failure doesn't compromise the whole stack
Defense-in-depth = multiple layers, so an attacker who breaks one still faces several more. Investing in a single layer is the anti-pattern; deleting logs and panicked crypto-rotation aren't part of the model.
Solve this in the app — Azure AZ-900 practice & 24k+ MCQs →
Related questions