Designing a strategy to identify and protect sensitive data
A key component of protecting your data is taking an inventory of your data and assessing the risk to your data. Without knowing what data you have and classifying the level of sensitivity or confidentiality, you cannot properly protect and govern the data. The zero-trust framework for protecting sensitive data is shown in Figure 10.4:
Figure 10.4 – Zero-trust framework for data protection
Let’s look at each of the steps in this process and how you can utilize Microsoft tools for accomplishing each step:
- Know your data involves taking an inventory of the data that you have and understanding the overall data landscape. This includes identifying the important data that you may have in the cloud and on-premises. Microsoft provides automatic data labeling and classification with the Unified labeling client. Data within Azure SQL Database can also be masked to avoid exposure of...
