Security, Privacy, Compliance and Trust Flashcards
Azure Security
What is the General Data Protection Regulation (GDPR)?
A regulation in EU law on data protection and privacy for all individuals within the European Union and the European Economic Area
What is Authorization?
Specifies what data you’re allowed to access and what you can do with it
What is Azure Firewall?
Centrally create, enforce, and log application and network connectivity policies across subscriptions and virtual networks
What is Microsoft Compliance Manager?
Part of the Microsoft Service Trust Portal, fully managed solution that helps you manage the end-to-end regulation-to-audit compliance process
What is Resource Locking?
Locks can be set to prevent deletion only, or to prevent modifications and deletion of Azure resource
What is Microsoft Trust Center?
Information you need to be confident that the Azure platform on which you run your services is secure
What is the National Institute of Standards and Technology (NIST)?
Provides the set of standards for recommended security controls for information systems at federal agencies
What is Azure Information Protection (AIP)?
Cloud-based solution to classify and protect documents and emails, using 80+ built-in data types (credit card numbers, ID/SSN numbers, etc.)
What is Azure Advanced Threat Protection (ATP)?
Identifies, detects, and helps you investigate advanced threats, compromised identities, and malicious insider actions, using data from Azure Active Directory (Azure AD), Azure Monitor logs, and Azure Security Center
What is the International Organization for Standardization (ISO)?
International standard-setting body composed of representatives from various national standards organizations
What is the Principle of Least Privilege?
Limit each user’s access rights to the bare minimum permissions they need to perform their work
What is the Microsoft Privacy Statement?
Explains the personal data Microsoft processes, how Microsoft processes it, and for what purposes
What are Network Security Groups (NSGs)?
Security rules that allow or deny inbound network traffic to, or outbound network traffic from, several types of Azure resources
What is Authentication?
Proving who you are, usually with a username and password
What is Azure Multi-Factor Authentication (MFA)?
Requires two or more authentication methods
What is the Azure Security Center?
Sends data from the Microsoft Monitoring Agent to the security analytics engine, which provides threat detection alerts and recommendations for securing workloads
What is Role-Based Access Control (RBAC)?
An authorization system built on Azure Resource Manager that provides fine-grained access management of Azure resources
What is an Azure VPN Gateway?
Used to send encrypted traffic between an Azure virtual network and an on-premises location or between Azure virtual networks
What is Azure DDoS Protection?
Continuous monitoring, alerting, and mitigation of Distributed Denial of Service attacks
What is Azure Active Directory (AAD)?
Fully managed identity service — Main objects are Users (pay per user) and Groups (free)
What is the Azure Key Vault?
Encrypt and safeguard authentication keys, storage account keys, data encryption keys, certificates, and passwords
What is the Microsoft Service Trust Portal?
Part of the Microsoft Trust Center, provides a variety of content, tools and other resources about Microsoft security, privacy, and compliance practices
