In this session, I'll discuss the importance of implementing multi-layered security in a Fabric Data Platform and how Identity, Networking and Data Security should be interlinked.

I'll discuss key Fabric security layers including:

Physical Data Centre and Disaster Recovery: How does Microsoft protect your data at source with Azure Availability Zones and Disaster Recovery.

Entra ID: User Authentication. How does Microsoft ensure users are who they say they are?

Networking: How does Fabric deal with data sources protected by firewalls and private endpoints. Also an overview of Azure Private Link.

Admin Portal Config: How do you secure your Fabric Admin Configuration Settings.

Multi-Layer Security Model: How do you correctly set your Fabric workspace and item-level permissions.

Workspace Roles: How do you allocate privileged Workspace Roles to Users or Security Groups.

RLS,CLS,OLS: Once authenticated how do you allow your users access to what they allowed to see at the data level.

OneLake Security: How can you restrict access to Lakehouse Items separately from Workspace Roles.

Data Encryption: How does Microsoft deal with Fabric data encryption stored at rest and during in-flight transfer.

Note this session won’t just be slides.

I’ll show the audience three demos on using the following Fabric features:

1) Workspace Identities against a firewall protected storage account.
2) Managed Private Endpoints against an Azure SQL Database blocked by public access.
3) OneLake Security against specific Lakehouse tables and folders.

I’ve already delivered this session to the Manchester Power BI & Fabric User Group in the UK which was well received. The session is around 45 minutes leaving enough time for Q&A.

Thanks for your consideration and very best wishes!

David.