In a stringent regulatory environment, a financial institution utilizes Azure Databricks for data analytics. Which strategy for managing encryption keys for data at rest ensures compliance while offering flexibility?

Real Exam

Implementing an on-premises Hardware Security Module (HSM) to store keys, with a custom interface for Databricks to access these keys over a secure connection

2.3%

Using default Databricks managed keys for encryption, assuming compliance based on Databricks‘ security certifications

8.0%

Leveraging Azure Key Vault for centralized key management, integrating with Databricks to use customer-managed keys (CMK) for all data at rest, with automated rotation policies

86.2%

Storing encryption keys within Databricks notebooks as variables for easy access and manual rotation by data engineers

3.4%

Databricks Certified Data Engineer - Professional

Get started today

Comments

In a stringent regulatory environment, a financial institution utilizes Azure Databricks for data analytics. Which strategy for managing encryption keys for data at rest ensures compliance while offering flexibility?