Security, Privacy, Compliance and Trust

Question 1

What is the General Data Protection Regulation (GDPR)?

Answer 1

A regulation in EU law on data protection and privacy for all individuals within the European Union and the European Economic Area

Question 2

What is Authorization?

Answer 2

Specifies what data you’re allowed to access and what you can do with it

Question 3

What is Azure Firewall?

Answer 3

Centrally create, enforce, and log application and network connectivity policies across subscriptions and virtual networks

Question 4

What is Microsoft Compliance Manager?

Answer 4

Part of the Microsoft Service Trust Portal, fully managed solution that helps you manage the end-to-end regulation-to-audit compliance process

Question 5

What is Resource Locking?

Answer 5

Locks can be set to prevent deletion only, or to prevent modifications and deletion of Azure resource

Question 6

What is Microsoft Trust Center?

Answer 6

Information you need to be confident that the Azure platform on which you run your services is secure

Question 7

What is the National Institute of Standards and Technology (NIST)?

Answer 7

Provides the set of standards for recommended security controls for information systems at federal agencies

Question 8

What is Azure Information Protection (AIP)?

Answer 8

Cloud-based solution to classify and protect documents and emails, using 80+ built-in data types (credit card numbers, ID/SSN numbers, etc.)

Question 9

What is Azure Advanced Threat Protection (ATP)?

Answer 9

Identifies, detects, and helps you investigate advanced threats, compromised identities, and malicious insider actions, using data from Azure Active Directory (Azure AD), Azure Monitor logs, and Azure Security Center

Question 10

What is the International Organization for Standardization (ISO)?

Answer 10

International standard-setting body composed of representatives from various national standards organizations

Question 11

What is the Principle of Least Privilege?

Answer 11

Limit each user’s access rights to the bare minimum permissions they need to perform their work

Question 12

What is the Microsoft Privacy Statement?

Answer 12

Explains the personal data Microsoft processes, how Microsoft processes it, and for what purposes

Question 13

What are Network Security Groups (NSGs)?

Answer 13

Security rules that allow or deny inbound network traffic to, or outbound network traffic from, several types of Azure resources

Question 14

What is Authentication?

Answer 14

Proving who you are, usually with a username and password

Question 15

What is Azure Multi-Factor Authentication (MFA)?

Answer 15

Requires two or more authentication methods

Question 16

What is the Azure Security Center?

Answer 16

Sends data from the Microsoft Monitoring Agent to the security analytics engine, which provides threat detection alerts and recommendations for securing workloads

Question 17

What is Role-Based Access Control (RBAC)?

Answer 17

An authorization system built on Azure Resource Manager that provides fine-grained access management of Azure resources

Question 18

What is an Azure VPN Gateway?

Answer 18

Used to send encrypted traffic between an Azure virtual network and an on-premises location or between Azure virtual networks

Question 19

What is Azure DDoS Protection?

Answer 19

Continuous monitoring, alerting, and mitigation of Distributed Denial of Service attacks

Question 20

What is Azure Active Directory (AAD)?

Answer 20

Fully managed identity service — Main objects are Users (pay per user) and Groups (free)

Question 21

What is the Azure Key Vault?

Answer 21

Encrypt and safeguard authentication keys, storage account keys, data encryption keys, certificates, and passwords

Question 22

What is the Microsoft Service Trust Portal?

Answer 22

Part of the Microsoft Trust Center, provides a variety of content, tools and other resources about Microsoft security, privacy, and compliance practices