Which prevention policy must you enable for each app?

DRAG DROP
You need to secure the Woodgrove Bank apps.
Which prevention policy must you enable for each app? To answer, drag the appropriate policy to the correct app. Each policy may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:

Correct Answer:

Explanation/Reference:
Explanation:
WGBLoanMaster: network security groups (NSGs)
From scenario: WGBLoanMaster must provide a role-based access model to the queues, including different permissions for senders and receivers.
WGBLeaseLeader: SQL transparent data encryption
Transparent Data Encryption (TDE) encrypts SQL Server, Azure SQL Database, and Azure SQL Data Warehouse data files, known as encrypting data at rest.
From scenario: The app should be secured to stop data breaches. If the data is breached, it must not be readable.
The app includes a SQL Server database and a web-based portal.
WGBCreditCruncher: next generation firewall
The web-based portal area of the app must allow users to sign in with their Facebook credentials.
The app includes several stateless components and must accommodate scaling of increased credit processing. The app runs on a nightly basis to process credit transactions that are batched during the day.
The app must:
Secure inbound and outbound traffic.
References: https://docs.microsoft.com/en-us/sql/relational-databases/security/encryption/transparent-data-encryption?view=sql-server-2017