Noobie Question. Is it this simple?

Good day,

you are almost correct. The thing is, that Truecrypt isn’t deemed safe anymore. There are multiple unpatched security related bugs in it, see: So about Truecrypt. It's now unsafe Use Veracrypt, it is a fork of Truecrypt, which is still in developement. Also, you should consider maybe using a hidden volume with Veracrypt. Furthermore, keep in mind, that as long as the partition is decrypted, Windows is able to read and write whatever is on it, as at that point, it is mounted into Windows’s file system.

Have a nice day,

Ego