You have an Azure subscription named Sub1 that is associated to an Azure Active Directory (Azure AD) tenant named contoso.com.
You are assigned the Global administrator role for the tenant. You are responsible for managing Azure Security Center settings.
You need to create a custom sensitivity label.
What should you do?
Click on the arrows to vote for the correct answer
A. B. C. D.A
First, you need to create a new sensitive information type because you can't directly modify the default rules.
https://docs.microsoft.com/en-us/office365/securitycompliance/customize-a-built-in-sensitive-information-typeThe correct answer is A. Create a custom sensitive information type.
Explanation:
Azure Security Center provides a unified infrastructure security management system for Azure resources. It monitors security across your on-premises and cloud resources, helps you identify and remediate vulnerabilities and provides a comprehensive security posture view of your environment.
Azure Information Protection provides a unified classification, labeling, and protection solution for all your sensitive data. By using sensitivity labels, you can classify and protect your sensitive information, control access to it, and track its usage.
To create a custom sensitivity label, you first need to create a custom sensitive information type. Sensitive information types are pre-configured templates that allow you to search for and classify sensitive information based on content and context. You can create custom sensitive information types based on your organization's specific requirements.
To create a custom sensitive information type, follow these steps:
Sign in to the Azure portal with an account that has the Security Administrator, Security Reader, or Owner role.
Navigate to the Azure Information Protection pane in the Azure portal.
Select the Sensitive information types blade.
Select the + Add a sensitive information type button.
Enter a name and description for the sensitive information type.
Define the pattern to search for and classify sensitive information based on content and context.
Select the Create button to create the sensitive information type.
After creating the sensitive information type, you can use it to create a sensitivity label. Sensitivity labels allow you to classify and protect your sensitive information, control access to it, and track its usage.
To create a sensitivity label, follow these steps:
Navigate to the Azure Information Protection pane in the Azure portal.
Select the Labels blade.
Select the + Add a label button.
Enter a name and description for the sensitivity label.
Select the custom sensitive information type that you created.
Configure the protection settings for the sensitivity label.
Select the Create button to create the sensitivity label.
Once you have created the sensitivity label, you can apply it to your sensitive data to classify and protect it. You can also use Azure Information Protection to track and audit the usage of your sensitive information.
Option B is incorrect because it's not required to create a custom sensitivity label in Azure Security Center.
Option C is incorrect because upgrading the pricing tier of the Security Center to Standard does not create a custom sensitivity label.
Option D is incorrect because enabling integration with Microsoft Cloud App Security does not create a custom sensitivity label.