As a healthcare company moves patient records to a cloud-based storage service, compliance with regulations that mandate protection of sensitive health data is required. What approach provides an essential benefit for securing this sensitive information when it is stored on the service?
Adjusting the access policy of the storage containers to 'private' without enabling specific secure storage features.
Activating a service that records and audits every interaction with the storage containers.
Configuring network barriers to control the flow of information into and out of the storage environment.
Enabling server-side encryption with the storage service's managed keys for the files.
Employing virtual firewall rules to the storage containers to prevent unauthorized access.
Drafting an internal security policy that details the encryption procedures without implementing them.