This session introduces a bunch of newer and less known possibilities in SQL Server for tightening the security. You will learn how to implement row-level security (RLS) to restrict which data in a table can be seen by a specific user. This is very useful in multi-tenant environments where you usually want to avoid a data reading intersection between different customers. You will learn how to implement RLS with programmable objects and with predicates. Dynamic and static data masking is a soft feature that limits sensitive data exposure by masking it to non-privileged users. SQL Server Vulnerability Assessment (VA) is a service that analyzes a database security state, creates a report, and provides steps for immediate actions. The service uses a big knowledge base of rules and best practices. SQL Server Management Studio (SSMS) Classify Data feature helps you creating defining vulnerable data. In SQL Server 2019 you can also classify data with Transact-SQL.