Category: Microsoft Purview

Section 13 – Manage and analyze audit logs and reports in Microsoft Purview

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 28/03/2024
Posted in Azure, Microsoft Purview, SC-400, Security, Study guide

Choose between Audit (Standard) and Audit (Premium) based on an organization’s requirements Standard vs. Premium Audit Features Capability Audit (Standard) Audit (Premium) Enabled by default Thousands of searchable audit events Audit search tool in the compliance portal Search-UnifiedAuditLog cmdlet Export…

Continue Reading Section 13 – Manage and analyze audit logs and reports in Microsoft Purview

Deep dive on Copilots and Security

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 23/03/2024
Posted in Azure, Entitlement management, Identity, Microsoft Purview, Security, Zero trust

Microsoft Copilots Microsoft Copilot isn’t a single service, but rather a suite of AI-powered assistants designed to enhance productivity and security across various Microsoft products and services. Here’s a breakdown of the different Copilots available: Security Copilot architecture, I could…

Continue Reading Deep dive on Copilots and Security

Section 11 – Plan and manage regulatory requirements by using Microsoft Purview Compliance Manager

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 20/03/2024
Posted in Azure, Compliance, Microsoft Purview, SC-400, Security, Study guide

Plan for regulatory compliance in Microsoft 365 It now works with Microsoft Defender for Cloud to assess compliance across Microsoft 365, Azure, Google Cloud Platform (GCP), and Amazon Web Services (AWS). This means you can see your entire compliance posture…

Continue Reading Section 11 – Plan and manage regulatory requirements by using Microsoft Purview Compliance Manager

Encrypting Data-At-Rest with Customer Managed Keys in M365

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 17/03/2024
Posted in Azure, Compliance, Entra ID, Identity, Key vault, Microsoft Purview, Security

As I mentioned in my previous posts. I like to keep my view as holistic as possible. Mixing a little bit of Azure infrastructure and Security side with a little hint of M365 Compliance and Entra Identity ingredients. So that…

Continue Reading Encrypting Data-At-Rest with Customer Managed Keys in M365

Insider Risks and Conditional Access

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 14/03/2024
Posted in Azure, Entra ID, Identity, Insider risks, Microsoft Purview, Security

Why Insider Risks matter? Employees now have greater ability to produce, manage, and exchange data across a variety of platforms and applications. In most circumstances, firms have limited resources and tools to detect and reduce organizational risks while adhering to…

Continue Reading Insider Risks and Conditional Access

Section 10 – Implement Microsoft Purview records management

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 11/03/2024 0 Comments on Section 10 – Implement Microsoft Purview records management
Posted in Azure, Microsoft Purview, SC-400, Security, Study guide

So what is records management? Many principles of the solution for Data Lifecycle Management also apply for Microsoft Purview Records Management, but there are some differences. Those differences include file plan, record declaration, and record versioning. File Plan: Imagine a…

Continue Reading Section 10 – Implement Microsoft Purview records management

Section 9 – Manage data retention in Microsoft 365 workloads

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 10/03/2024
Posted in Azure, Microsoft Purview, Security, Study guide

First of all if you don’t have E5, use the 90-day Microsoft Purview solutions trial to explore how additional Purview capabilities can help your organization manage data security and compliance needs. Governing Your Data with Microsoft Keep what’s important, delete…

Continue Reading Section 9 – Manage data retention in Microsoft 365 workloads

Section 8 – Implement data lifecycle and records management – Retain and delete data by using retention labels

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 28/02/2024
Posted in Azure, Compliance, Microsoft Purview, SC-400, Security, Study guide

Plan for information retention and disposition by using retention labels You can control how long your organization keeps content using two main actions: These actions allow you to configure various retention settings: Benefits of using these retention settings: Create retention…

Continue Reading Section 8 – Implement data lifecycle and records management – Retain and delete data by using retention labels

Section 7 – Implement DLP – Monitor and manage DLP activities

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 26/11/2023 0 Comments on Section 7 – Implement DLP – Monitor and manage DLP activities
Posted in Azure, Compliance, Microsoft Purview, SC-400, Study guide

Analyze DLP reports DLP transmits a substantial volume of data to Microsoft Purview, encompassing monitoring, policy matches, user activities, and subsequent actions. To effectively refine your policies and assess actions on sensitive items, you must engage with and respond to…

Continue Reading Section 7 – Implement DLP – Monitor and manage DLP activities

Section 5 – Implement DLP – Create and configure DLP policies

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 29/10/2023 0 Comments on Section 5 – Implement DLP – Create and configure DLP policies
Posted in Azure, Compliance, Data Loss Prevention, Defender, Entra ID, Microsoft Purview, SC-400, Security, Study guide

Design DLP policies based on an organization’s requirements Designing Data Loss Prevention could be based on the regulations of your industry or just internal security principles that should be made to carve the security measure framework in to stone. In…

Continue Reading Section 5 – Implement DLP – Create and configure DLP policies