Feature and tools in Azure for governance and compliance

Question 1

Microsoft Purview

Answer 1

a family of data governance, risk, and compliance solutions that help you get a single, unified view into your data

Question 2

T or F

Purview brings insight about your on premises, multi cloud, and SaaS data together

Answer 2

True

Question 3

With Microsoft Purview you can stay up to date on your data landscape thanks to:

Answer 3

Automated data discovery
Sensitive data classification
End to end data lineage

Question 4

Microsoft Purview helps your organization to

Answer 4

Protect sensitive data across clouds, apps, and devices

identify data risks and manage regulatory compliance requirements

get started with regulatory compliance

Question 5

Microsoft Purview’s unified data governance helps your organization to

Answer 5

Create an up-to-date map of your entire data estate that includes data classification and end-to-end lineage.

Identify where sensitive data is stored in your estate.

Create a secure environment for data consumers to find valuable data.

Generate insights about how your data is stored and used.

Manage access to the data in your estate securely and at scale.

Question 6

Azure Policy

Answer 6

enables you to create, assign, and manage policies that control or audit your resources

Question 7

T or F

Azure Policy enables you to define both individual policies and group policies, known as initiatives

Answer 7

True

Question 8

T or F

if you set a policy at a high level, it will automatically be applied to all of the groupings that call within the parent

Answer 8

True

Question 9

t or f

if you set a policy on a resource group, all resources created within that group will receive the same policy

Answer 9

true

Question 10

T or F

Azure Policy comes with built in policy and initiative definitions for Storage, Networking, Compute, Security Center, and Monitoring

Answer 10

True

Question 11

T or F

You can flag a resource to avoid Azure Policy automatically applying anything to a resource

Answer 11

True

Question 12

What are Azure Policy initiatives?

Answer 12

A way of group related policies together

Question 13

How many policy definitions does the Enable Monitoring in Azure Security Center initiative contain?

Answer 13

over 100

Question 14

What does a resource lock do?

Answer 14

prevent resources from being accidentally deleted or changed

Question 15

What can resource locks be applied to?

Answer 15

individual resources
resource groups
subscriptions

Question 16

T or F

if a resource lock is placed on a resource group all of the resources will have the same lock applied

Answer 16

True

Question 17

What are the two types of resource locks?

Answer 17

one that prevents users from deleting

one that prevents users from changing - such as a ReadOnly

Question 18

How can you manage your resource locks?

Answer 18

In the Azure portal, PowerShell, the Azure CLI, or form an Azure Resource Manager template

Question 19

How to make changes to a locked resource?

Answer 19

two step process

remove the lock then apply any action you have permission to perform

Question 20

T or F

A read only lock prevents any create or update operations

Answer 20

True

Question 21

Microsoft Service Trust Portal

Answer 21

provides access to various content, tools, and other resources about Microsofts security, privacy, and compliance practices.

Question 22

How do you access resources on the Service Trust Portal?

Answer 22

By signing in as an authenticated user

Question 23

How can you prevent creation of non-compliant resources, without having to manually evaluate each resource?

Answer 23

Azure Policy

Question 24

What’s the best way to prevent inadvertent deletion of a resource?

Answer 24

Azure resource locks