Category: Microsoft Purview

Section 11 – Plan and manage regulatory requirements by using Microsoft Purview Compliance Manager

Plan for regulatory compliance in Microsoft 365 It now works with Microsoft Defender for Cloud to assess compliance across Microsoft 365, Azure, Google Cloud Platform (GCP), and Amazon Web Services (AWS). This means you can see your entire compliance posture…

Continue Reading Section 11 – Plan and manage regulatory requirements by using Microsoft Purview Compliance Manager

Encrypting Data-At-Rest with Customer Managed Keys in M365

As I mentioned in my previous posts. I like to keep my view as holistic as possible. Mixing a little bit of Azure infrastructure and Security side with a little hint of M365 Compliance and Entra Identity ingredients. So that…

Continue Reading Encrypting Data-At-Rest with Customer Managed Keys in M365

Insider Risks and Conditional Access

Why Insider Risks matter? Employees now have greater ability to produce, manage, and exchange data across a variety of platforms and applications. In most circumstances, firms have limited resources and tools to detect and reduce organizational risks while adhering to…

Continue Reading Insider Risks and Conditional Access

Section 10 – Implement Microsoft Purview records management

So what is records management? Many principles of the solution for Data Lifecycle Management also apply for Microsoft Purview Records Management, but there are some differences. Those differences include file plan, record declaration, and record versioning. File Plan: Imagine a…

Continue Reading Section 10 – Implement Microsoft Purview records management

Section 9 – Manage data retention in Microsoft 365 workloads

First of all if you don’t have E5, use the 90-day Microsoft Purview solutions trial to explore how additional Purview capabilities can help your organization manage data security and compliance needs. Governing Your Data with Microsoft Keep what’s important, delete…

Continue Reading Section 9 – Manage data retention in Microsoft 365 workloads

Section 8 – Implement data lifecycle and records management – Retain and delete data by using retention labels

Plan for information retention and disposition by using retention labels You can control how long your organization keeps content using two main actions: These actions allow you to configure various retention settings: Benefits of using these retention settings: Create retention…

Continue Reading Section 8 – Implement data lifecycle and records management – Retain and delete data by using retention labels

Section 7 – Implement DLP – Monitor and manage DLP activities

Analyze DLP reports DLP transmits a substantial volume of data to Microsoft Purview, encompassing monitoring, policy matches, user activities, and subsequent actions. To effectively refine your policies and assess actions on sensitive items, you must engage with and respond to…

Continue Reading Section 7 – Implement DLP – Monitor and manage DLP activities

Section 5 – Implement DLP – Create and configure DLP policies

Design DLP policies based on an organization’s requirements Designing Data Loss Prevention could be based on the regulations of your industry or just internal security principles that should be made to carve the security measure framework in to stone. In…

Continue Reading Section 5 – Implement DLP – Create and configure DLP policies

Section 3 – Implement information protection – Design and implement encryption for email messages

Design and implement encryption for email messages Design an email encryption solution based on methods available in Microsoft 365 Features Feature Description Message Encryption (OME) – Encrypts messages for internal and external recipients. – Allows encrypted messages to any email…

Continue Reading Section 3 – Implement information protection – Design and implement encryption for email messages

Exam cram for SC-400 – Administering Information Protection and Compliance in M365

Previously I did Study guides for SC-300, AZ-500, SC-100 and SC-200. So now it’s the turn for the Compliance part under the Security umbrella. See here for the previous Study guides. And if you want to have 1to1 mentoring sessions,…

Continue Reading Exam cram for SC-400 – Administering Information Protection and Compliance in M365