Category: Microsoft Purview

Section 7 – Implement DLP – Monitor and manage DLP activities

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 26/11/2023 0 Comments on Section 7 – Implement DLP – Monitor and manage DLP activities
Posted in Azure, Compliance, Microsoft Purview, SC-400, Study guide

Analyze DLP reports DLP transmits a substantial volume of data to Microsoft Purview, encompassing monitoring, policy matches, user activities, and subsequent actions. To effectively refine your policies and assess actions on sensitive items, you must engage with and respond to…

Continue Reading Section 7 – Implement DLP – Monitor and manage DLP activities

Section 5 – Implement DLP – Create and configure DLP policies

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 29/10/2023 0 Comments on Section 5 – Implement DLP – Create and configure DLP policies
Posted in Azure, Compliance, Data Loss Prevention, Defender, Entra ID, Microsoft Purview, SC-400, Security, Study guide

Design DLP policies based on an organization’s requirements Designing Data Loss Prevention could be based on the regulations of your industry or just internal security principles that should be made to carve the security measure framework in to stone. In…

Continue Reading Section 5 – Implement DLP – Create and configure DLP policies

Section 3 – Implement information protection – Design and implement encryption for email messages

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 22/10/2023 0 Comments on Section 3 – Implement information protection – Design and implement encryption for email messages
Posted in Azure, Compliance, Exchange, Microsoft Purview, SC-400, Security, Study guide

Design and implement encryption for email messages Design an email encryption solution based on methods available in Microsoft 365 Features Feature Description Message Encryption (OME) – Encrypts messages for internal and external recipients. – Allows encrypted messages to any email…

Continue Reading Section 3 – Implement information protection – Design and implement encryption for email messages

Exam cram for SC-400 – Administering Information Protection and Compliance in M365

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 24/09/2023 0 Comments on Exam cram for SC-400 – Administering Information Protection and Compliance in M365
Posted in Azure, Compliance, Microsoft Purview, Study guide

Previously I did Study guides for SC-300, AZ-500, SC-100 and SC-200. So now it’s the turn for the Compliance part under the Security umbrella. See here for the previous Study guides. And if you want to have 1to1 mentoring sessions,…

Continue Reading Exam cram for SC-400 – Administering Information Protection and Compliance in M365

Azure AD Privileged Identity Management and new features

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/03/2023 0 Comments on Azure AD Privileged Identity Management and new features
Posted in Authentication methods, Azure, Azure AD, Conditional access, Identity, Identity Platform, Microsoft Purview, PIM, Security, Zero trust

What is PIM? PIM has and will be a backbone for permission Just In Time access in Microsoft based environments. You can easily assign Permanent roles but also Eligible roles for admins and define timeout for the roles. They either…

Continue Reading Azure AD Privileged Identity Management and new features

Section 2 – Mitigate threats using Microsoft 365 Defender – Mitigate threats to the productivity environment by using Microsoft 365 Defender

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 12/02/2023 0 Comments on Section 2 – Mitigate threats using Microsoft 365 Defender – Mitigate threats to the productivity environment by using Microsoft 365 Defender
Posted in Azure, Data Loss Prevention, Insider risks, Microsoft Purview, SC-200, Study guide

Welcome to the second section of my SC-200 study guide. In this section I will go through the following content: And didn’t have time (space) to include the following: And will be covering them in the next section, not to…

Continue Reading Section 2 – Mitigate threats using Microsoft 365 Defender – Mitigate threats to the productivity environment by using Microsoft 365 Defender

Tips and tricks on Securing your Data factory

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 20/12/2022 0 Comments on Tips and tricks on Securing your Data factory
Posted in Azure, Azure AD, Data factory, IAM, Identity, Key vault, Managed HSM, Microsoft Purview, On-premises, Security

Why? Like we all know Identity is a hot topic after the MFA fatigue methods or discovering and attacking our resources as external or internal entities but the often overlooked aspect of security is inside the data layer. You could…

Continue Reading Tips and tricks on Securing your Data factory

SQL Server 2022 and Azure ARC with Azure subscription model

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 28/11/2022 0 Comments on SQL Server 2022 and Azure ARC with Azure subscription model
Posted in Azure, Azure AD, Azure ARC, Compliance, Defender, IAM, Identity, Identity Platform, Microsoft Purview, On-premises, Powershell, Security, SQL

SQL 2022 has arrived and in this post I will try out the new setup that should have Azure ARC install embedded. Why to use Azure ARC with SQL 2022? One reason could be security, you will get these features…

Continue Reading SQL Server 2022 and Azure ARC with Azure subscription model

Section 7 – Design a strategy for data and applications – Specify security requirements for applications and design a strategy for securing data

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 07/09/2022 0 Comments on Section 7 – Design a strategy for data and applications – Specify security requirements for applications and design a strategy for securing data
Posted in Azure, Azure AD, Azure Policy, DevOps, Exchange, Identity, Identity Platform, Key vault, Microsoft 365, Microsoft Purview, Microsoft Sentinel, Security, Storage, Zero trust

And there you have it, this is the last section in my study guide. This time made longer posts, hopefully they weren’t too long to read. Stay tuned for more! Specify priorities for mitigating threats to applications. Specify a security…

Continue Reading Section 7 – Design a strategy for data and applications – Specify security requirements for applications and design a strategy for securing data

Section 4 – Evaluate Governance Risk Compliance (GRC) technical strategies and security operations strategies – Design a regulatory compliance strategy

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 17/08/2022 0 Comments on Section 4 – Evaluate Governance Risk Compliance (GRC) technical strategies and security operations strategies – Design a regulatory compliance strategy
Posted in Azure, Compliance, Microsoft Purview, Security

This is the fourth section to my SC-100 study guide and it will cover the following topics: Interpret compliance requirements and translate into specific technical capabilities (new or existing) Evaluate infrastructure compliance by using Microsoft Defender for Cloud Interpret compliance…

Continue Reading Section 4 – Evaluate Governance Risk Compliance (GRC) technical strategies and security operations strategies – Design a regulatory compliance strategy