An organisation needs a single unified view to govern its data wherever it lives, spanning on-premises stores, multiple clouds, and SaaS applications, with automated data discovery, sensitive-data classification, and end-to-end data lineage. Which tool provides this?
- AAzure Policy, which governs Azure resource configuration, not data
- BMicrosoft Purview, which governs the data estate across all sources Correct
- CMicrosoft Defender for Cloud, which manages cloud security posture
- DAzure Monitor, which collects operational telemetry from your resources
Why A is wrong: Azure Policy enforces rules on Azure resource configurations, which is a governance service, but it operates on resource settings rather than mapping and classifying the data estate, so it does not give a unified view of data.
Why B is correct: Correct. Microsoft Purview is a family of data governance solutions that brings insights about on-premises, multicloud, and SaaS data together into one view, building a current map of the data estate that includes classification and end-to-end lineage so sensitive data can be located and managed at scale.
Why C is wrong: Microsoft Defender for Cloud assesses security posture and surfaces protection recommendations, which is appealing for oversight, but its focus is security rather than discovering and classifying data across sources.
Why D is wrong: Azure Monitor gathers metrics and logs about how resources perform, which is broad visibility, but it covers operational telemetry rather than cataloguing, classifying, or tracing the lineage of data.