Azure network security perimeter

[JC-wk]

Is your feature request related to a problem? Please describe.
As a TRE Admin I want to prevent data exfiltration while maintaining necessary connectivity for required applications

Now Azure Network Security Perimeter is GA I am interested to hear if this would benefit and should be adopted by the TRE?

Describe the solution you'd like
Azure Network Security Perimeter creates logical network boundaries around your platform-as-a-service (PaaS) resources that are deployed outside your virtual networks. Network security perimeter helps you control public network access to resources like Azure Storage accounts and Azure Key Vault by establishing a secure perimeter.
https://learn.microsoft.com/en-us/azure/private-link/network-security-perimeter-concepts
Features of a network security perimeter include:

• Resource to resource access communication within perimeter members, preventing data exfiltration to nonauthorized destinations.
• External public access management with explicit rules for PaaS resources associated with the perimeter.
• Access logs for audit and compliance.
• Unified experience across PaaS resources.

Describe alternatives you've considered
Leave as-is / not implementing it

Additional context
N/A