Category: Compliance

Section 5 – Implement DLP – Create and configure DLP policies

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 29/10/2023 0 Comments on Section 5 – Implement DLP – Create and configure DLP policies
Posted in Azure, Compliance, Data Loss Prevention, Defender, Entra ID, Microsoft Purview, SC-400, Security, Study guide

Design DLP policies based on an organization’s requirements Designing Data Loss Prevention could be based on the regulations of your industry or just internal security principles that should be made to carve the security measure framework in to stone. In…

Continue Reading Section 5 – Implement DLP – Create and configure DLP policies

Section 3 – Implement information protection – Design and implement encryption for email messages

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 22/10/2023 0 Comments on Section 3 – Implement information protection – Design and implement encryption for email messages
Posted in Azure, Compliance, Exchange, Microsoft Purview, SC-400, Security, Study guide

Design and implement encryption for email messages Design an email encryption solution based on methods available in Microsoft 365 Features Feature Description Message Encryption (OME) – Encrypts messages for internal and external recipients. – Allows encrypted messages to any email…

Continue Reading Section 3 – Implement information protection – Design and implement encryption for email messages

Section 2 – Implement information protection – Rest of sensitivity label content and Design

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 15/10/2023 0 Comments on Section 2 – Implement information protection – Rest of sensitivity label content and Design
Posted in Azure, Compliance, SC-400, Security, Study guide

This is the second part of Sensitivity labels. Sensitivity label content continued Configure auto-labeling policies for sensitivity labels Using Auto-labeling policies is called Service-side processing Service-side auto-labeling Auto-labeling on the service side, also known as auto-labeling for data at rest…

Continue Reading Section 2 – Implement information protection – Rest of sensitivity label content and Design

Section 2 – Implement information protection – Implement and manage sensitivity labels

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 08/10/2023 0 Comments on Section 2 – Implement information protection – Implement and manage sensitivity labels
Posted in Azure, Compliance, Purview, Security, Study guide

This will be a two part section as there is a lot to talk about Sensitivity labels. Implement and manage sensitivity labels In this section we are talking on how to Protect your data scope. There is a clear story…

Continue Reading Section 2 – Implement information protection – Implement and manage sensitivity labels

Section 1 – Implement information protection – Create and SITs and trainable classifiers

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 01/10/2023 0 Comments on Section 1 – Implement information protection – Create and SITs and trainable classifiers
Posted in Azure, Compliance, SC-400, Security, Study guide

The first section of this Study guide is going to cover Information types and trainable classifiers but maybe first introducing the different trials that you can use to try them out, if you don’t have real licenses available. You can…

Continue Reading Section 1 – Implement information protection – Create and SITs and trainable classifiers

Exam cram for SC-400 – Administering Information Protection and Compliance in M365

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 24/09/2023 0 Comments on Exam cram for SC-400 – Administering Information Protection and Compliance in M365
Posted in Azure, Compliance, Microsoft Purview, Study guide

Previously I did Study guides for SC-300, AZ-500, SC-100 and SC-200. So now it’s the turn for the Compliance part under the Security umbrella. See here for the previous Study guides. And if you want to have 1to1 mentoring sessions,…

Continue Reading Exam cram for SC-400 – Administering Information Protection and Compliance in M365

Power Platform and customer-managed encryption key (preview) with some HSM

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 02/04/2023 0 Comments on Power Platform and customer-managed encryption key (preview) with some HSM
Posted in Azure, Compliance, IAM, Managed HSM, Security

This is huge for all the Power Platform users. Now you can use Key vault to store your key, if you aren’t familiar with concept of Key vault, let me open it a bit. What features will be supported? Power…

Continue Reading Power Platform and customer-managed encryption key (preview) with some HSM

Microsoft 365 Defender role-based access control

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 29/01/2023 0 Comments on Microsoft 365 Defender role-based access control
Posted in Azure, Azure AD, Compliance, Defender, IAM, Microsoft 365, Security

The new Microsoft 365 Defender RBAC model makes it simple to migrate existing permissions from the individual supported RBAC models to the new RBAC model. All permissions listed within the Microsoft 365 Defender RBAC model align to permissions in the…

Continue Reading Microsoft 365 Defender role-based access control

SQL Server 2022 and Azure ARC with Azure subscription model

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 28/11/2022 0 Comments on SQL Server 2022 and Azure ARC with Azure subscription model
Posted in Azure, Azure AD, Azure ARC, Compliance, Defender, IAM, Identity, Identity Platform, Microsoft Purview, On-premises, Powershell, Security, SQL

SQL 2022 has arrived and in this post I will try out the new setup that should have Azure ARC install embedded. Why to use Azure ARC with SQL 2022? One reason could be security, you will get these features…

Continue Reading SQL Server 2022 and Azure ARC with Azure subscription model

Do’s and don’ts concerning security for Identity part 6

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 13/11/2022 0 Comments on Do’s and don’ts concerning security for Identity part 6
Posted in Azure, Azure AD, Compliance, Conditional access, Identity, Identity Platform, Microsoft Authenticator, Security

Continuing with the do’s of Identity and supposing that you are in part of your journey that you have either Hybrid or fully cloud-based identities. In the last part I covered how you can create your own roles and use…

Continue Reading Do’s and don’ts concerning security for Identity part 6