What is the function of NSX Data Security?
A.
Prevents sensitive data in your virtualized environment from being copied
B.
Prevents sensitive data in your virtualized environment from being modified
C.
Identifies sensitive data in your virtualized environment based upon regulation security policies
D.
Identifies sensitive data in your virtualized environment based upon regulation violation reports
Agreed D is correct.
Data Security provides visibility into sensitive data stored within your organization’s virtualized and cloud environments. Based on the violations reported by NSX Data Security, you can ensure that sensitive data is adequately protected and assess compliance with regulations around the world.
https://pubs.vmware.com/NSX-6/topic/com.vmware.nsx.admin.doc/GUID-E496C826-6DDA-4357-8D69-4AD21F8C2EEC.html
Sensitive data are defined by the security policy. Running a data security scan identifies data in the virtual environment that violates the policy.
If violation report shows 0 files, it doesn’t mean there is no sensitive data (which would be implication from option D), instead it means there is no breach of security policy.
C option seems to me better definition
100% agree. You don’t identify based on a report, you identify based on policies as per below.
NSX Data Security provides visibility into sensitive data stored within your organization’s virtualized and cloud environments. Based on the violations reported by NSX Data Security, you can ensure that sensitive data is adequately protected and assess compliance with regulations around the world.
To begin using NSX Data Security, you create a policy that defines the regulations that apply to data security in your organization and specifies the areas of your environment and files to be scanned. A regulation is composed of content blades, which identify the sensitive content to be detected. NSX supports PCI, PHI, and PII related regulations only.
No it is D: The question is: What is the function of NSX Data Security. The function is to create a regulation violation reports. To vind these files you use a “Policy” NSX does not talk about a policy in the GUI: Regulations and standards to detect + Files to scan, you can see this as a policy, but is your own interpretation.