Microsoft Cybersecurity Architect Expert SC-100
Get started today
Ultimate access to all questions.
Comments
Loading comments...
Ultimate access to all questions.
As a Cybersecurity Architect for a large organization, you are tasked with designing a solution to securely manage and protect secrets, keys, and certificates across multiple Azure services. The solution must comply with industry standards for security, provide detailed audit logs for compliance reporting, and scale to accommodate the organization's growth. Additionally, it should minimize operational overhead by automating the rotation of secrets and certificates. Which of the following approaches BEST meets these requirements? (Choose one)
A
Implementing a custom script to manually rotate secrets and certificates stored in an Azure Storage account, with access logs enabled for auditing.
B
Utilizing Azure Key Vault with managed identities for Azure resources, enabling automatic rotation of secrets and certificates, and integrating with Azure Monitor for comprehensive audit logs.
C
Storing secrets, keys, and certificates in a shared network drive with restricted access, using scheduled tasks to rotate them periodically.
D
Encrypting all secrets, keys, and certificates using Azure Disk Encryption and storing them in individual team members' Azure VMs for decentralized management.