🔥 3-day streak
Microsoft Cybersecurity Architect Expert105 / 158
Question 105 of 158

A financial services company must comply with a regulation requiring that customer records containing account numbers and national ID numbers cannot be copied to USB drives, uploaded to unmanaged cloud services, or pasted into consumer webmail from corporate Windows endpoints. Security architects also need policy actions to differ by user group: the compliance team should be allowed to override with business justification, while general staff must be hard-blocked. Which design best translates this regulatory requirement into enforceable controls?

Reviewed for accuracy · Report an issueNext question