Ultimate access to all questions.
As a Microsoft Cybersecurity Architect, you are tasked with designing a solution for a government organization that processes classified data and must comply with the Federal Risk and Authorization Management Program (FedRAMP). The solution must ensure that all data processing activities are compliant with FedRAMP's security controls, including the protection of classified data against unauthorized access and ensuring that only authorized personnel can access the data. Additionally, the solution must be scalable to accommodate future growth and must not incur unnecessary costs. Which of the following approaches using Microsoft Purview would BEST meet these requirements? (Choose one option)
A
Implement Microsoft Purview to automatically classify and label sensitive classified data across all environments, and enforce data loss prevention policies to prevent unauthorized access or disclosure, without conducting a comprehensive inventory of existing data.
B
Utilize Microsoft Purview to continuously monitor and analyze data access and usage patterns across the organization, and generate detailed compliance reports for FedRAMP, without implementing specific access controls for classified data.
C
Deploy Microsoft Purview to discover and inventory all classified data stored across the organization's cloud and on-premises environments, and implement granular access controls to ensure that only authorized personnel can access the data, while also providing scalability and cost efficiency.
D
Use Microsoft Purview exclusively for performing regular vulnerability assessments and penetration testing on systems storing classified data, to identify and remediate potential security vulnerabilities, without addressing data classification or access control.