Your company uses an auditing package that, due to the way it accesses files, mimics a malware threat. The package is always installed into a single directory on each PC. You would like prevent this package from triggering investigations. How can you accomplish this with the least administrative effort?

Answer options:

A.Request that Microsoft add the package to a allow list
B.Add the package to the list of allowed software in Security Center
C.Add the folder the package is installed in to the folder exclusions
D.Replace the software with another product
E.Disable automated investigations

Correct Answer: C Option C is correct. Adding a folder/directory to folder exclusions makes sure that alert doesn’t get triggered in future.
Option A is incorrect. Vendor is not responsible for an organization’s product capabilities.
Option E is incorrect. It is not recommended to disable automated investigation capabilities.
Option D is incorrect. It is not recommended to change your solution.
Option B is incorrect. The requirement is to exclude the directory which is least administrative effort.
Reference: 

https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/configure-extension-file-exclusions-microsoft-defender-antivirus?view=o365-worldwide