security on Sql server we can proceed ways like operating system level, network level, application level, Sql server instance :surface area, server and db level permissions, authentication and authorization, by applying password policies, by using encryption concept such as always encrypted, tde, column level encryption