Security, Privacy, Compliance and Trust Flashcards
Azure Security
What is the General Data Protection Regulation (GDPR)?
A regulation in EU law on data protection and privacy for all individuals within the European Union and the European Economic Area
What is Authorization?
Specifies what data you’re allowed to access and what you can do with it
What is Azure Firewall?
Centrally create, enforce, and log application and network connectivity policies across subscriptions and virtual networks
What is Microsoft Compliance Manager?
Part of the Microsoft Service Trust Portal, fully managed solution that helps you manage the end-to-end regulation-to-audit compliance process
What is Resource Locking?
Locks can be set to prevent deletion only, or to prevent modifications and deletion of Azure resource
What is Microsoft Trust Center?
Information you need to be confident that the Azure platform on which you run your services is secure
What is the National Institute of Standards and Technology (NIST)?
Provides the set of standards for recommended security controls for information systems at federal agencies
What is Azure Information Protection (AIP)?
Cloud-based solution to classify and protect documents and emails, using 80+ built-in data types (credit card numbers, ID/SSN numbers, etc.)
What is Azure Advanced Threat Protection (ATP)?
Identifies, detects, and helps you investigate advanced threats, compromised identities, and malicious insider actions, using data from Azure Active Directory (Azure AD), Azure Monitor logs, and Azure Security Center
What is the International Organization for Standardization (ISO)?
International standard-setting body composed of representatives from various national standards organizations
What is the Principle of Least Privilege?
Limit each user’s access rights to the bare minimum permissions they need to perform their work
What is the Microsoft Privacy Statement?
Explains the personal data Microsoft processes, how Microsoft processes it, and for what purposes
What are Network Security Groups (NSGs)?
Security rules that allow or deny inbound network traffic to, or outbound network traffic from, several types of Azure resources
What is Authentication?
Proving who you are, usually with a username and password
What is Azure Multi-Factor Authentication (MFA)?
Requires two or more authentication methods