Azure Tutorials Series - Azure Compliance

-
In previous article, we learnt about Azure Resource manager, Azure resources, locking, Management group, Resource groups and tagging in Azure. Now we will learn about compliance in Azure. We already have covered some of the high level compliance introduction in previous articles.

Azure Compliance 

  • Microsoft Privacy statement
    • Microsoft uses personal data of the user,  for what purpose and how it is using personal data is covered in Microsoft Privacy statement
  • Microsoft Trust center
    • Contains in depth information about security, privacy, compliance offering, features and practices
  • Compliance Manager
    • Assesses your usage and provides a dashboard with a summary and recommendations 
    • Provides compliance score
    • Includes below regulations
      • HIPPA
      • ISO 27001
      • EU GDPR
      • ISO 27018
      • NIST
  • Azure Security Centre
    • Provides overall security score
    • Assesses against
      • Azure CIS 1.0.0
      • PCI DSS 3.2
      • ISO 27001
      • SOC TSP
    • To help understand it better, we have provided a screen print below for the reference purpose -

Azure Security Centre


Thank you for reading it! Please feel free to comment if anything else you want us to add. Happy Learning!

Comments

Post a Comment

Popular posts from this blog

Azure Tutorials Series - Azure Networking

-
Image
In this article, we will learn about Azure networking concepts such as architecture, microservices, virtual networks, VPNs, subnet, VPN gateways and most importantly Network Security Group(NSG). All these terms are to be understood if you appearing for AZ900 Microsoft Azure Fundamentals exam. Azure Networking In previous articles we have learnt about Micro- services and how they work, these are alos loosely coupled architecture. Some of the features includes Independent components interact with each other with the help of queues Can be updated and deployed independently Highly scalable Supports Asynchronous messaging N-tier Architecture Supports loosely coupled architecture Application divided into multiple tiers such that higher tier can access lower tier but not vice versa Tiers are re-usable and can be updated or replaced easily without any hassle. Three-tier in general Web Tier(front end) Application tier(back end) Data tier(Storage) Virtual Network Isolated network shared by few g
Read more

Coforge Interview Questions | Automation Testing profile

-
Image
In this article we will cover recent Coforge Interview questions asked for testing profile.  Date of Interview - 19th December 2020 Mode of Interview - Web conference through TEAMS Interviewer - Rahul Sharma Round - L1 Coforge Interview Questions | Automation testing profile Round L1 Tell me about your project I have been working as a QA for XYZ company from 5.4 years, during this tenure,  I have learnt about Manual testing, Selenium, Database testing, TestNg, framework designing and API testing. What is a webdriver? A webdriver is a an automation framework that allows executing our tests in different browsers. It also supports headless execution using HtmlUnit driver. What are hooks? @Before and @After are called Hooks, they are used before and after any test scenario. How would you like your automation framework to be designed? How can you use data properties in Test NG framework? Explain Access specifiers? Access modifiers define the visibility of the class. There are four different
Read more

Testing in CI/CD

-
If you are part of testing fraternity you would have heard CI/CD numerous times by now. It's the talk of the software testing town. In this article, we will cover the basics of CI/CD, what actually it is and how it is implemented in software testing. What is continuous integration? In simple terms, development teams can integrate their code into a shared repository. This helps in maintaining code quality and identifying potential issues with the local version of the code at an early stage. What is continuous delivery? Everything that is being continuously merged by the development team, is continuously deployed to the live environment. Continuous delivery is often coined as ‘Continuous Deployment’ as well. Since most developers work in parallel, continuously integrating their code into one repository would mean that the master branch is continuously updated with new features. In order to ensure that there is no compromise in the code quality with so many changes
Read more