Category: Microsoft Purview

Copilot for Security: Your AI Partner 🤖

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 05/04/2024
Posted in Azure, Copilot, Identity, Insider risks, Microsoft Purview, Security

What is Copilot for Security? Microsoft Copilot for Security shatters traditional security software limitations. It leverages cutting-edge large language models (LLMs) from Open AI, along with vast security data and threat intelligence (encompassing a staggering 78 trillion daily security signals),…

Continue Reading Copilot for Security: Your AI Partner 🤖

Unify SIEM and XDR for Enhanced Threat Detection

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 04/04/2024
Posted in Azure, Defender, Microsoft Purview, Microsoft Sentinel, Security

Now when you open Defender portal (https://security.microsoft.com) you will see the above displayed, this feature is now in Public preview and let’s how the process works. Defender XDR and Sentinel: Working Together This table summarizes the key functionalities and considerations…

Continue Reading Unify SIEM and XDR for Enhanced Threat Detection

Section 13 – Manage and analyze audit logs and reports in Microsoft Purview

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 28/03/2024
Posted in Azure, Microsoft Purview, SC-400, Security, Study guide

Choose between Audit (Standard) and Audit (Premium) based on an organization’s requirements Standard vs. Premium Audit Features Capability Audit (Standard) Audit (Premium) Enabled by default Thousands of searchable audit events Audit search tool in the compliance portal Search-UnifiedAuditLog cmdlet Export…

Continue Reading Section 13 – Manage and analyze audit logs and reports in Microsoft Purview

Deep dive on Copilots and Security

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 23/03/2024
Posted in Azure, Entitlement management, Identity, Microsoft Purview, Security, Zero trust

Microsoft Copilots Microsoft Copilot isn’t a single service, but rather a suite of AI-powered assistants designed to enhance productivity and security across various Microsoft products and services. Here’s a breakdown of the different Copilots available: Security Copilot architecture, I could…

Continue Reading Deep dive on Copilots and Security

Section 11 – Plan and manage regulatory requirements by using Microsoft Purview Compliance Manager

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 20/03/2024
Posted in Azure, Compliance, Microsoft Purview, SC-400, Security, Study guide

Plan for regulatory compliance in Microsoft 365 It now works with Microsoft Defender for Cloud to assess compliance across Microsoft 365, Azure, Google Cloud Platform (GCP), and Amazon Web Services (AWS). This means you can see your entire compliance posture…

Continue Reading Section 11 – Plan and manage regulatory requirements by using Microsoft Purview Compliance Manager

Encrypting Data-At-Rest with Customer Managed Keys in M365

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 17/03/2024
Posted in Azure, Compliance, Entra ID, Identity, Key vault, Microsoft Purview, Security

As I mentioned in my previous posts. I like to keep my view as holistic as possible. Mixing a little bit of Azure infrastructure and Security side with a little hint of M365 Compliance and Entra Identity ingredients. So that…

Continue Reading Encrypting Data-At-Rest with Customer Managed Keys in M365

Insider Risks and Conditional Access

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 14/03/2024
Posted in Azure, Entra ID, Identity, Insider risks, Microsoft Purview, Security

Why Insider Risks matter? Employees now have greater ability to produce, manage, and exchange data across a variety of platforms and applications. In most circumstances, firms have limited resources and tools to detect and reduce organizational risks while adhering to…

Continue Reading Insider Risks and Conditional Access

Section 10 – Implement Microsoft Purview records management

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 11/03/2024 0 Comments on Section 10 – Implement Microsoft Purview records management
Posted in Azure, Microsoft Purview, SC-400, Security, Study guide

So what is records management? Many principles of the solution for Data Lifecycle Management also apply for Microsoft Purview Records Management, but there are some differences. Those differences include file plan, record declaration, and record versioning. File Plan: Imagine a…

Continue Reading Section 10 – Implement Microsoft Purview records management

Section 9 – Manage data retention in Microsoft 365 workloads

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 10/03/2024
Posted in Azure, Microsoft Purview, Security, Study guide

First of all if you don’t have E5, use the 90-day Microsoft Purview solutions trial to explore how additional Purview capabilities can help your organization manage data security and compliance needs. Governing Your Data with Microsoft Keep what’s important, delete…

Continue Reading Section 9 – Manage data retention in Microsoft 365 workloads

Section 8 – Implement data lifecycle and records management – Retain and delete data by using retention labels

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 28/02/2024
Posted in Azure, Compliance, Microsoft Purview, SC-400, Security, Study guide

Plan for information retention and disposition by using retention labels You can control how long your organization keeps content using two main actions: These actions allow you to configure various retention settings: Benefits of using these retention settings: Create retention…

Continue Reading Section 8 – Implement data lifecycle and records management – Retain and delete data by using retention labels