Privacy, Compliance and Trust Flashcards
Governance
Set of rules, polices and roles to define acceptable use of Azure resources
Azure policy
• Apply polices to resources in Azure to ensure resources comply
Role Based Access Control
- Define specific user access to resources
- Enable minimum access necessary to resources
- Be very explicit about uses and access
The 3 elements of RBAC
- Security principal – object representing an entity such as a user or group, which can access the resource
- Role definition – collection of permissions such as read, write and delete
- Scope – the resources the access applies to. Specify which role can access a resource
Locks
– a tool to manage changes and removal of resources
Locks can be:
• Assigned to a subscription, RG or resource
• Either delete where you can’t delete the locked object, or read-only where you can’t make any changes
• A lock needs to be removed before locked actions can be performed again
Blueprints
– templates for creating Azure resources
• Can apply RBAC, and polices using blueprints
Azure Monitor
- Uses telemetry to improve your azure experience.
* Helps you find resources that aren’t performing 100%
Azure Service Health
Azure Service Health notifies you about any planned/unplanned outages on the platform.
Compliance Organisations
GDPR - Protects individuals with regard to processing of their data
ISO - Compliance with quality and customer satisfaction
NIST - Focuses purely on the tech industry.
Compliance manager
• Azure knows about compliance and resources, and can give you recommendations through the Compliance Manager
Trust Centre
- Learn about Microsoft effort on security, privacy, GDPR, data location, compliance and more
- A hub for more info about trust in each product and service
Service Trust Portal
- Review all the independent reports and audits preformed on MS products and services.
- Azure complies with more standards than any other cloud provider
