Most any commercially mature DBMS provides the following five ways to secure the data you keep inside it: Authentication of user connections (== Identity) Authorization (== DB command permissions) (a.k.a. Role-based access control) Network Encryption (a.k.a. Transport encryption) Storage Encryption (a.k.a. Encryption-at-rest) Auditing (MongoDB Enterprise or Percona Server for MongoDB only) MongoDB is no exception. [&]

https://www.percona.com/blog/2019/07/12/mongodb-security-vs-five-bad-guys/