NSE 7 – Public Cloud Security 6.4 — Question 30

You have been asked to secure your organization's salesforce application that is running on Microsoft Azure, and find an effective method for inspecting shadow
IT activities in the organization. After an initial investigation, you find that many users access the salesforce application remotely as well as on-premises. Your goal is to find a way to get more visibility, control over shadow IT-related activities, and identify any data leaks in the salesforce application.
Which three steps should you take to achieve your goal? (Choose three.)

Answer options

• A. Deploy and configure FortiCASB with a Fortinet FortiCASB subscription license.
• B. Configure FortiCASB and set up access rights, privileges, and data protection policies.
• C. Use FortiGate, FortiGuard, and FortiAnalyzer solutions.
• D. Deploy and configure FortiCWP with a workload guardian license.
• E. Deploy and configure FortiGate with Security Fabric solutions, and FortiCWP with a storage guardian advance license.

Correct answer: A, B, C

Explanation

The correct steps involve deploying and configuring FortiCASB, which helps in monitoring and controlling shadow IT by providing visibility into cloud applications and user activities. Setting up access rights and data protection policies with FortiCASB enhances security and compliance. Using FortiGate and FortiGuard solutions further fortifies the security posture, while options D and E do not directly address the visibility and control needed for shadow IT activities.