Describe features and tools in Azure for governance and compliance Flashcards
Define ‘Microsoft Purview’
a family of data governance, risk, and compliance solutions that brings insights about your on-premises, multicloud, and software-as-a-service data together.
How can Microsoft Purview inform on the data landscape?
- Automated data discovery
- Sensitive data classification
- End-to-end data lineage
What are the two main areas that comprise Microsoft Purview?
Risk and compliance and unified data governance.
How does Microsoft Purview help with risk and compliance?
- Protect sensitive data across clouds, apps, and devices.
- Identify data risks and manage regulatory compliance requirements.
- Get started with regulatory compliance.
How does Microsoft Purview offer unified data governance?
- Identify where sensitive data is stored in your estate.
- Create a secure environment for data consumers to find valuable data.
- Generate insights about how your data is stored and used.
- Manage access to the data in your estate securely and at scale.
Define ‘Azure Policy’
Service in Azure that enables you to create, assign, and manage policies that control or audit your resources.
What is the purpose of Azure Policy?
Enforce different rules across your resource configurations so that those configurations stay compliant with corporate standards.
What are the two types of Azure Policy definitions?
Individual policies or groups of related policies, known as initiatives.
How does Azure Policy asses preconfigured policies?
Azure Policy evaluates your resources and highlights resources that aren’t compliant with the policies you’ve created.
How does Azure Policy ensure compliance?
Can prevent noncompliant resources from being created.
What objects an azure policy be assigned to?
A specific resource, resource group, subscription, and so on.
Are azure policies inherent?
Yes; If you set an Azure Policy on a resource group, all resources created within that group will receive the same policy.
Can Azure Policy automatically remediate noncompliant resources and configurations to ensure the integrity of the state of the resources?
Yes
Define an ‘Azure Policy initiatives’
A way of grouping related policies together.
Define a ‘resource lock’
Prevents resources from being accidentally deleted or changed.