Microsoft Cybersecurity Architect Expert SC-100
Get started today
Ultimate access to all questions.
Your company has an Azure subscription that utilizes Microsoft Defender for Cloud to enhance security posture. Recently, the company entered into a contract with the United States government, necessitating compliance with the National Institute of Standards and Technology (NIST) Special Publication 800-53, which outlines security and privacy controls for federal information systems and organizations. In light of this new requirement, you need to evaluate your current Azure subscription to ensure it meets NIST 800-53 standards. What is the first step you should take in this compliance review process?
Your company has an Azure subscription that utilizes Microsoft Defender for Cloud to enhance security posture. Recently, the company entered into a contract with the United States government, necessitating compliance with the National Institute of Standards and Technology (NIST) Special Publication 800-53, which outlines security and privacy controls for federal information systems and organizations. In light of this new requirement, you need to evaluate your current Azure subscription to ensure it meets NIST 800-53 standards. What is the first step you should take in this compliance review process?
Explanation:
To review the current subscription for NIST 800-53 compliance, you should first add a regulatory compliance standard in Microsoft Defender for Cloud. This allows you to compare the configuration of your resources with the requirements in industry standards, regulations, and benchmarks. The regulatory compliance dashboard in Defender for Cloud provides insights into your compliance posture based on how you're meeting specific compliance requirements.