In your role as a Databricks Certified Data Engineer, you are tasked with enhancing the security of a Databricks cluster to comply with stringent organizational policies that mandate encryption for both data at rest and data in transit. The solution must not only meet these security requirements but also adhere to cost constraints by avoiding unnecessary third-party services. Additionally, the solution should allow for the use of customer-managed keys for encryption to meet compliance standards. Considering these requirements, which of the following configurations would you implement? (Choose one option)

Simulated

Enable SSL/TLS for data in transit and rely on Databricks' built-in encryption for data at rest, as it simplifies the configuration process and reduces costs.

22.1%

Enable SSL/TLS for data in transit and configure the cluster to use a customer-managed encryption key for data at rest, ensuring that the encryption keys are under your control.

52.9%

Utilize Databricks' built-in encryption for data at rest and set up a custom SSL/TLS certificate for data in transit, leveraging internal resources for certificate management.

22.6%

Implement a third-party encryption solution for both data at rest and data in transit to ensure the highest level of security, despite the higher costs.

2.3%

Databricks Certified Data Engineer - Professional

Comments

Get started today