Compliance, Privacy and Governance Flashcards
How do you ensure resources remain compliant to the region that you’re in?
Azure Policies allows you to assign, create and manage policy assignment to resources. You can also use Initiatives which are groups of policies. Policies can be assigned at any level of resources. E.g. make MFA mandatory for all users in a particular management group or Encrypt data at rest.
What is Azure Blueprints?
Allows you to create policy configurations using Policy, Role, ARM (Azure Resource Manager) template and resource group.
Benefits of this is that you can automatically adhere to standards and requirements by applying the right policies out of the box.
What do resource locks do and what are the two types?
Prevents accidental deletion or modification of resources. Can be a CannotDelete lock or a ReadOnly lock. In these instances, it needs to be unlocked before it can be modified. You can lock at different levels.
What does Azure Compliance Manager do?
Performs risk assessments of cloud services to see how well the resources adhere to regulatory, security, industry and corporate standards.
What are the 5 important standards to remember?
ISO - international org for standardisation
SOC - Service organisation compliance
GDPR - Personal Data Protection
HIPA - Health insurance
Payment Card Industry
What is Service Trust Portal?
It provide the independent audit reports for MS Clous services.