SC-400 Administering Information Protection and Compliance in Microsoft 365

Learn how to protect information in your Microsoft 365 deployment. This course focuses on data lifecycle management and information protection and compliance within your organization. The course covers implementation of data loss prevention policies, sensitive information types, sensitivity labels, data retention policies, Microsoft Purview Message Encryption, audit, eDiscovery, and insider risk among other related topics. The course helps learners prepare for the Microsoft Information Protection Administrator exam (SC-400).
SC-400 Administering Information Protection and Compliance in Microsoft 365

Doelgroep

The information protection administrator translates an organization’s risk and compliance requirements into technical implementation. They are responsible for implementing and managing solutions for content classification, data loss prevention (DLP), information protection, data lifecycle management, records management, privacy, risk, and compliance. They also work with other roles that are responsible for governance, data, and security to evaluate and develop policies to address an organization's risk reduction and compliance goals. This role assists workload administrators, business application owners, human resources departments, and legal stakeholders to implement technology solutions that support the necessary policies and controls.

Inhoud training

Introduction to information protection and data lifecycle management in Microsoft Purview

Learn how Microsoft Purview information protection and data lifecycle management solutions help you protect and govern your data, throughout its lifecycle – wherever it lives, or wherever it travels.

Upon completion of this module, you should be able to:

  • Discuss information protection and data lifecycle management and why it's important.
  • Describe Microsoft's approach to information protection and data lifecycle management.
  • Define key terms associated with Microsoft's information protection and data lifecycle management solutions.
  • Identify the solutions that comprise information and data lifecycle management in Microsoft Purview.

Classify data for protection and governance

Learn about the information available to help you understand your data landscape and know your data.

Upon completion of this module, you should be able to:

  • List the components of the Data Classification solution.
  • Identify the cards available on the Data Classification overview tab.
  • Explain the Content explorer and Activity explorer.
  • Describe how to use sensitive information types and trainable classifiers.

Create and manage sensitive information types

Create and manage sensitive information types.

After completing this module, you'll be able to:

  • Recognize the difference between built-in and custom sensitivity labels.
  • Configure sensitive information types with exact data match-based classification.
  • Implement document fingerprinting.
  • Create custom keyword dictionaries.

Understand Microsoft 365 encryption

Learn how Microsoft 365 encrypts data-at-rest and in-transit, securely manages encryption keys, and provides key management options to customers to meet their business needs and compliance obligations.

Upon completion of this module, you should be able to:

  • Explain how encryption mitigates the risk of unauthorized data disclosure.
  • Describe Microsoft data-at-rest and data-in-transit encryption solutions.
  • Explain how Microsoft 365 implements service encryption to protect customer data at the application layer.
  • Understand the differences between Microsoft managed keys and customer managed keys for use with service encryption.

Deploy Microsoft Purview Message Encryption

Deploy Microsoft Purview Message Encryption

After completing this module, you will be able to:

  • Configure Microsoft Purview Message Encryption for end users
  • Implement Microsoft Purview Advanced Message Encryption

Create and configure sensitivity labels with Microsoft Purview

Microsoft Purview sensitivity labels enable you to classify and protect sensitive data throughout your organization, including in the cloud and on devices. This module covers how to classify and protect sensitive information to ensure its security and compliance.

Upon completion of this module, you should be able to:

  • Understand the basics of Microsoft Purview sensitivity labels in Microsoft 365.
  • Create and publish sensitivity labels to classify and safeguard data.
  • Configure encryption settings with sensitivity labels for improved data security.
  • Implement auto-labeling for consistent data classification and protection.
  • Use the Microsoft Purview data classification dashboard to monitor sensitivity label usage.

Apply sensitivity labels for data protection

Apply sensitivity labels for data protection.

After completing this module, you'll be able to:

  • Understand the foundations of sensitivity label integration in Microsoft 365.
  • Manage sensitivity label use in Office apps for security compliance.
  • Secure Outlook and Teams meetings with sensitivity labels.
  • Apply labels to Microsoft 365 Groups, SharePoint, and OneDrive for data protection.

Prevent data loss in Microsoft Purview

Learn how to discover, classify, and protect sensitive and business-critical content throughout its lifecycle across your organization.

When you finish with this module, you'll be able to:

  • Discuss the data loss prevention solution and its benefits.
  • Describe the data loss prevention configuration process.
  • Explain what users experience when the solution is implemented.

Configure DLP policies for Microsoft Defender for Cloud Apps and Power Platform

Configure DLP policies for Microsoft Defender for Cloud Apps and Power Platform

After completing this module you will be able to:

  • Describe the integration of DLP with Microsoft Defender for Cloud Apps.
  • Configure policies in Microsoft Defender for Cloud Apps.

Manage data loss prevention policies and reports in Microsoft 365

Manage data loss prevention policies (DLP) and reports in Microsoft 365.

After completing this module, you'll be able to:

  • Review and analyze DLP reports.
  • Manage permissions for DLP reports.
  • Identify and mitigate DLP policy violations.
  • Mitigate DLP violations in Microsoft Defender for Cloud Apps.

Manage the data lifecycle in Microsoft Purview

Learn how to manage your content lifecycle using solutions to import, store, and classify business-critical data so you can keep what you need and delete what you don't.

Upon completion of this module, you should be able to:

  • Discuss the Data Lifecycle Management solution and its benefits.
  • List the customer scenarios the Data Lifecycle Management solution addresses.
  • Describe the Data Lifecycle Management configuration process.
  • Explain what users will experience when the solution is implemented.
  • Articulate deployment and adoption best practices.

Manage data retention in Microsoft 365 workloads

Manage data retention in Microsoft 365 workloads

After completing this module, you'll be able to:

  • Describe the retention features in Microsoft 365 workloads.
  • Configure retention settings in Microsoft Teams, Viva Engage, and SharePoint Online.
  • Recover content protected by retention settings.
  • Regain protected items from Exchange Mailboxes.

Manage records in Microsoft Purview

Learn how to use intelligent classification to automate and simplify the retention schedule for regulatory, legal, and business-critical records in your organization.

Upon completion of this module, you should be able to:

  • Discuss the Microsoft Purview Records Management solution and its benefits.
  • List the customer scenarios the Microsoft Purview Records Management solution addresses.
  • Describe the Microsoft Purview Records Management configuration process.
  • Explain what users will experience when the solution is implemented.
  • Articulate deployment and adoption best practices.

Explore compliance in Microsoft 365

This module explores the tools Microsoft 365 provides to help ensure an organization's regulatory compliance, including the Microsoft Purview compliance portal, Compliance Manager, and the Microsoft compliance score. MS-102

By the end of this module, you should be able to:

  • Describe how Microsoft 365 helps organizations manage risks, protect data, and remain compliant with regulations and standards.
  • Plan your beginning compliance tasks in Microsoft Purview.
  • Manage your compliance requirements with Compliance Manager.
  • Manage compliance posture and improvement actions using the Compliance Manager dashboard.
  • Explain how an organization's compliance score is determined.

Search for content in the Microsoft Purview compliance portal

Search for content in the Microsoft Purview compliance portal

By the end of this module, you'll be able to:

  • Describe how to use content search in the Microsoft Purview compliance portal.
  • Design and create a content search.
  • Preview the search results.
  • View the search statistics.
  • Export the search results and search report.
  • Configure search permission filtering.

Manage Microsoft Purview eDiscovery (Standard)

Manage Microsoft Purview eDiscovery (Standard)

By the end of this module, you'll be able to:

  • Describe how Microsoft Purview eDiscovery (Standard) builds on the basic search and export functionality of Content search.
  • Describe the basic workflow of eDiscovery (Standard).
  • Create an eDiscovery case.
  • Create an eDiscovery hold for an eDiscovery case.
  • Search for content in a case and then export that content.
  • Close, reopen, and delete a case.

Manage Microsoft Purview eDiscovery (Premium)

Manage Microsoft Purview eDiscovery (Premium)

By the end of this module, you'll be able to:

  • Describe how Microsoft Purview eDiscovery (Premium) builds on eDiscovery (Standard).
  • Describe the basic workflow of eDiscovery (Premium).
  • Create and manage cases in eDiscovery (Premium).
  • Manage custodians and non-custodial data sources.
  • Analyze case content and use analytical tools to reduce the size of search result sets.

Search and investigate with Microsoft Purview Audit

Search and investigate with Microsoft Purview Audit.

After completing this module, you'll be able to:

  • Identify the differences between Microsoft Purview Audit (Standard) and Audit (Premium).
  • Configure Microsoft Purview Audit for optimal log management.
  • Perform audits to assess compliance and security measures.
  • Analyze irregular access patterns using advanced tools in Purview Audit (Premium) and PowerShell.
  • Ensure regulatory compliance through strategic data management.

Prepare Microsoft Purview Communication Compliance

Microsoft Purview Communication Compliance is a solution that helps organizations address code-of-conduct policy violations in company communications, while also assisting organizations in regulated industries meet specific supervisory compliance requirements. Communication Compliance uses machine learning to intelligently detect violations across different communication channels such as Microsoft Teams, Exchange Online, or Yammer messages.

Upon completion of this module, you should be able to:

  • List the enhancements in communication compliance over Office 365 Supervision policies, which it will replace.
  • Explain how to identify and remediate code-of-conduct policy violations.
  • List the prerequisites that need to be met before creating communication compliance policies.
  • Describe the types of built-in, pre-defined policy templates.

Manage insider risk in Microsoft Purview

Microsoft Purview Insider Risk Management helps organizations address internal risks, such as IP theft, fraud, and sabotage. Learn about insider risk management and how Microsoft technologies can help you detect, investigate, and take action on risky activities in your organization.

Upon completion of this module, you should be able to:

  • Explain how Microsoft Purview Insider Risk Management can help prevent, detect, and contain internal risks in an organization.
  • Describe the types of built-in, pre-defined policy templates.
  • List the prerequisites that need to be met before creating insider risk policies.
  • Explain the types of actions you can take on an insider risk management case.

Implement Microsoft Purview Information Barriers

This module examines how Microsoft Purview uses information barriers to restrict communication and collaboration in Microsoft Teams, SharePoint Online, and OneDrive for Business. MS-102

By the end of this module, you should be able to:

  • Describe how information barriers can restrict or allow communication and collaboration among specific groups of users.
  • Describe the components of an information barrier and how to enable information barriers.
  • Understand how information barriers help organizations determine which users to add or remove from a Microsoft Team, OneDrive account, and SharePoint site.
  • Describe how information barriers prevent users or groups from communicating and collaborating in Microsoft Teams, OneDrive, and SharePoint.

Manage regulatory and privacy requirements with Microsoft Priva

Learn how to use Microsoft Priva to manage privacy risk policies and subject rights requests.

Upon completion of this module, the learner will be able to:

  • Create and manage risk management policies for data overexposure, data transfer, and data minimization
  • Investigate and remediate risk alerts
  • Send user notifications
  • Create and manage Subject Rights Requests
  • Estimate and retrieve subject data
  • Review subject data
  • Create subject rights reports

Implement privileged access management

Privileged access management allows granular access control over privileged admin tasks in Office 365. Privileged access management requires users to request just-in-time access to complete elevated and privileged tasks through a highly scoped and time-bound approval workflow. This configuration gives users just-enough-access to perform the task at hand without risking exposure of sensitive data or critical configuration settings.

Upon completion of this module, you should be able to:

  • Explain the difference between privileged access management and privileged identity management.
  • Describe the privileged access management process flow.
  • Describe how to configure and enable privileged access management.

Manage Customer Lockbox

Customer Lockbox supports requests to access data in Exchange Online, SharePoint Online, and OneDrive when Microsoft engineers need to access customer content to determine root cause and fix an issue. Customer Lockbox requires the engineer to request access from the customer as a final step in the approval workflow. This gives organizations the option to approve or deny these requests and provide direct-access control to the customer.

Upon completion of this module, you should be able to:

  • Describe the Customer Lockbox workflow.
  • Explain how to approve or deny a Customer Lockbox request.
  • Explain how you can audit actions performed by Microsoft engineers when access requests are approved.

Meer informatie

Heb je interesse in deze training? Vul je gegevens in, verstuur en we nemen contact met je op.