Home » Microsoft » 70-532 v.2 » What should you do?
You need to secure all patient data stored in persistent storage.
What should you do?
A. Use the Azure Storage Client Library and the Azure Key Vault to enable client-side encryption by using a content encryption key (CEK).
B. Enable the Azure Storage Service Encryption (SSE) for all Azure storage accounts.
C. Use TLS/SSL to enable encryption for all traffic between the VMs and the client systems.
D. Use the Azure Security Center to define policies for the Azure subscription and resource groups to include daily scanning of all VMs.
Correct Answer: B
Explanation/Reference:
Explanation:
Azure Storage Service Encryption for Data at Rest helps you protect your data to meet your organizational security and compliance commitments. With this feature, Azure Storage automatically encrypts your data before persisting it to Azure Storage, and decrypts the data before retrieval. The handling of encryption, encryption at rest, decryption, and key management in Storage Service Encryption is transparent to users.
Scenario: Patient data must be stored securely. Data security must meet the Health Insurance Portability and Accountability Act of 1996 (HIPAA) standards in the United States and must meet the ISO/ICE 27002 data security standards in the rest of the world.
References: https://docs.microsoft.com/en-us/azure/storage/common/storage-service-encryption