Privacy, Compliance, Trust

Question 1

What is Azure Governance?

Answer 1

Ensures you remain compliant with national and international compliance rules

Question 2

What is Azure Policy?

Answer 2

Ensures policies applies to resources are compliant

Question 3

What are Azure Policies? What major topic are Azure policies part of? What entity are policies for? When is an Azure policy setup?

Answer 3

Are for resources and are rules applied when a resource is created and managed - for help being compliant
Part of Azure governance

Question 4

What are VM tags?

Answer 4

Attributes displayed in the Azure invoice - can be easily filtered

Question 5

How can you easily replicate network configurations for future deployments, similar to ARM?

Answer 5

Azure Blueprints - ARM + policies + resource groups

Question 6

What are Conditional Access Policies?

Answer 6

Applied against users using assignments and access controls

Question 7

What is Role Based Access Control? Who is it for?

Answer 7

Allows you to control how users and applications can interact with your Azure Resources - principle, role, scope

Question 8

What are Resource Locks? Who are they for? and what entities do they lock?

Answer 8

Can assign a lock to a resource, subscription, or resource group. For users

Question 9

What are types of Resource Locks?

Answer 9

Delete - can’t delete the lock object
Read-only - can’t make changes to the object

Question 10

What is a security principle in RBAC?

Answer 10

Object representing an entity - user

Question 11

How can you control a users access to resources?

Answer 11

Role Based Access Control - principle, role definition, scope

Question 12

What is role definition?

Answer 12

Collection of permissions - read, write delete

Question 13

What is Azure Monitor?

Answer 13

Helps you find the resources that aren’t performing 100% - Can also be on prem resources
Its a health check

Question 14

What is Log Analytics? What is log analytics part of? Whats an example of something log analytics might check?

Answer 14

Stores log data for query - specific to VM health, CPU usage, VM free disk space, etc
Part of Azure Monitor

Question 15

What is Application Insights? What is it part of? How is it different than Log Analytics

Answer 15

Performance Insights for web applications (health related insights)
Finds performance bottlenecks - and what pages are most popular
Part of Azure Monitor
Log Analytics is query data while Application Insights summarizes

Question 16

What are Azure Monitor Alerts?

Answer 16

Notifies when something breaks - your resources, NOT general Azure health - Ex. Unresponsive VM, VM using excessive CPU

Question 17

What is Azure Service Health? How much does it cost? What does it provide?

Answer 17

Helps monitor general Azure health - Alerts, real-time tracking, free

Question 18

What is Azure Compliance Manager? What does it offer? How is it different than an Azure Policy?

Answer 18

Gives you recommendations based on compliance rules such as ISO, GDPR - Offers compliance scores and lets you assign tasks.
Azure policies are rules.

Question 19

What is Azure Arc?

Answer 19

Helps you manage Azure, on prem, and other cloud resources in the same interface
Installs an agent to non-Azure resources
Manage non-Azure kubernetes clusters, deploy Azure managed database services to non-Azure locations

Question 20

What is the General Data Protection Regulation?

Answer 20

Counties with users and customers in the EU must comply with the GDPR

Question 21

What is a security policy in the Azure Security Center?
How is it different than an Azure compliance policy?

Answer 21

Desired configuration of your workloads and helps ensure you’re complying with the security requirements of your company or regulators.
Azure compliance policy is related to compliance only

Question 22

What are the Azure services for Trust?

Answer 22

Service Trust Portal - Trust Center

Question 23

What service tells you about Azure privacy?

Answer 23

There is no single service, many services do

Question 24

What are the major Azure services for Complaince

Answer 24

Azure Governance
Azure compliance policies
Azure Compliance Manager

Question 25

What are the major Azure security services?

Answer 25

Azure Defender new Security Center
Azure Sentinel
Azure security policies

Question 26

What are the major Azure services for your resources health?

Answer 26

Azure Monitor
Log analytics
Application Insights