Hi I am helping a customer to deploy Jira and Confluence in Azure.

I found some bug in the template I already reported and they have been already fixed.

I have a new question or suggestion to improve the deployment.

My customer is complaining about the security and Azure Store and DB encryption is not enough.

My customer would like to be sure the solution is full DLP compliant and they can mitigare risk of data leak from a malicious admin.

I was thinking to implement Always Encrypted feature on Azure SQL Database but it must be compatible with the Jira and Confluence application, the application must encrypt and decrypt the data using Azure Key Vault

About Share folder at moment I don't have idea except the solution Team Secrets you have in your marketplace to protect the attachments but I didn't understand if it's working ok Confluence as well.

Can you help me to mitigate these risks please?

I did some changes on Azure ARM template also, to improve the availability and security, can I have a live meeting session with someone to discussi it?

Thanks

Riccardo Pomato