hi, i need a help on configuring based on the below information. i can explain in detail once i connect with you. This help needed asap. Pay is $100.

C. Role-Based Access Controls (RBAC) for Marketing, Accounting, and IT Resource Groups
1. Recommendations for Role-Based Access Controls
Recommendation 1:
• Assign each department (Marketing, Accounting, IT) to a dedicated Azure Resource Group. This ensures that only relevant department members can access their respective resources.
Recommendation 2:
• Use Azure Role-Based Access Control (RBAC) to assign specific roles like Key Vault Contributor or Virtual Machine Contributor to limit access to only necessary resources, following the principle of least privilege.
Recommendation 3:
• Implement conditional access policies based on user roles and location to restrict access to sensitive systems and data only from trusted devices or networks.
2. Configuration of RBAC
I will provide screenshots for the configuration of these RBAC settings once the system is accessible, showing:
• Resource Group-level permissions for each department.
• Specific access roles such as Key Vault Contributor and Virtual Machine Contributor assigned to department members.
________________________________________
D. Azure Key Vaults for Encryption
1. Best Practices for Azure Key Vaults
Best Practice 1:
• Separate Key Vaults for each department (Marketing, Accounting, IT) to ensure data isolation and minimize the risk of unauthorized access.
Best Practice 2:
• Use managed identities for applications and services to securely access the Key Vault without the need for hardcoded credentials.
I will provide screenshots of these updates once accessible, showing the updated access policies and roles for each department.
2. Recommendations for Encrypting Data
Recommendation 1: Encrypt Data-at-Rest
• Configure Azure Key Vault to use Azure Storage Encryption for data-at-rest. This ensures that any data stored in Azure is automatically encrypted without requiring additional configuration.
Recommendation 2: Encrypt Data-in-Transit
• Enable SSL/TLS encryption for data-in-transit. Ensure that all communication between the cloud infrastructure and end-users is encrypted, particularly sensitive cardholder and government data.
________________________________________
E. File Backup Configurations in the Cloud Lab Environment
1. Configuration of Backup Settings
Setting 1:
• Configure Azure Backup to perform daily backups at 7:00 p.m. ET to meet the Recovery Time Objective (RTO) of 36 hours and ensure the recovery point objective (RPO) of 1 day.
Setting 2:
• Set up instant recovery snapshots for 3 days and retain daily backup points for 45 days to support both short-term and long-term recovery needs.
I will provide screenshots of the backup configurations once accessible.
2. How Configurations Support Business Requirements
• Daily backups ensure that the company can recover data from any point within the last 24 hours, fulfilling the RPO of 1 day.
• Snapshot retention for 3 days allows for quick recovery in the event of data corruption, while long-term backup retention supports disaster recovery scenarios.