Encrypting Data-At-Rest with Customer Managed Keys in M365

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 17/03/2024
Posted in Azure, Compliance, Entra ID, Identity, Key vault, Microsoft Purview, Security

As I mentioned in my previous posts. I like to keep my view as holistic as possible. Mixing a little bit of Azure infrastructure and Security side with a little hint of M365 Compliance and Entra Identity ingredients. So that…

Continue Reading Encrypting Data-At-Rest with Customer Managed Keys in M365

Entra ID – Convert external users to internal (Preview)

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 16/03/2024
Posted in Azure, Entra ID, Identity, Security

Prologue Mergers, acquisitions, and reorganizations can create a tangled web of user accounts. Imagine acquiring a company where some employees collaborate with your team using external guest accounts. Integrating them fully requires converting them to internal users – a process…

Continue Reading Entra ID – Convert external users to internal (Preview)

Insider Risks and Conditional Access

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 14/03/2024
Posted in Azure, Entra ID, Identity, Insider risks, Microsoft Purview, Security

Why Insider Risks matter? Employees now have greater ability to produce, manage, and exchange data across a variety of platforms and applications. In most circumstances, firms have limited resources and tools to detect and reduce organizational risks while adhering to…

Continue Reading Insider Risks and Conditional Access

Section 10 – Implement Microsoft Purview records management

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 11/03/2024 0 Comments on Section 10 – Implement Microsoft Purview records management
Posted in Azure, Microsoft Purview, SC-400, Security, Study guide

So what is records management? Many principles of the solution for Data Lifecycle Management also apply for Microsoft Purview Records Management, but there are some differences. Those differences include file plan, record declaration, and record versioning. File Plan: Imagine a…

Continue Reading Section 10 – Implement Microsoft Purview records management

My tenant has Security defaults enabled and I want to disable them. What to do?

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 10/03/2024
Posted in Azure, Conditional access, Entra ID, IAM, Identity, Security, Zero trust

First things first, Security defaults were automatically enabled for all new tenants created after October 22, 2019. This was to ensure a strong security posture right from the start for all users. Set the stage Let’s imagine this scenario. You…

Continue Reading My tenant has Security defaults enabled and I want to disable them. What to do?

Section 9 – Manage data retention in Microsoft 365 workloads

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 10/03/2024
Posted in Azure, Microsoft Purview, Security, Study guide

First of all if you don’t have E5, use the 90-day Microsoft Purview solutions trial to explore how additional Purview capabilities can help your organization manage data security and compliance needs. Governing Your Data with Microsoft Keep what’s important, delete…

Continue Reading Section 9 – Manage data retention in Microsoft 365 workloads

Section 8 – Implement data lifecycle and records management – Retain and delete data by using retention labels

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 28/02/2024
Posted in Azure, Compliance, Microsoft Purview, SC-400, Security, Study guide

Plan for information retention and disposition by using retention labels You can control how long your organization keeps content using two main actions: These actions allow you to configure various retention settings: Benefits of using these retention settings: Create retention…

Continue Reading Section 8 – Implement data lifecycle and records management – Retain and delete data by using retention labels

Section 7 – Implement DLP – Monitor and manage DLP activities

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 26/11/2023 0 Comments on Section 7 – Implement DLP – Monitor and manage DLP activities
Posted in Azure, Compliance, Microsoft Purview, SC-400, Study guide

Analyze DLP reports DLP transmits a substantial volume of data to Microsoft Purview, encompassing monitoring, policy matches, user activities, and subsequent actions. To effectively refine your policies and assess actions on sensitive items, you must engage with and respond to…

Continue Reading Section 7 – Implement DLP – Monitor and manage DLP activities

Section 6 – Implement DLP – Implement and monitor Endpoint DLP

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 19/11/2023 0 Comments on Section 6 – Implement DLP – Implement and monitor Endpoint DLP
Posted in Azure, Compliance, Defender, Intune, SC-400, Security, Study guide

Configure advanced DLP rules for devices in DLP policies Supported virtualization You can include virtual machines as monitored devices in the Microsoft Purview compliance portal, and the onboarding procedures remain the same as those listed above. Onboarding Endpoint Data Loss…

Continue Reading Section 6 – Implement DLP – Implement and monitor Endpoint DLP

Section 5 – Implement DLP – Create and configure DLP policies

Harri Jaakkonen
Posted by Harri Jaakkonen Posted on 29/10/2023 0 Comments on Section 5 – Implement DLP – Create and configure DLP policies
Posted in Azure, Compliance, Data Loss Prevention, Defender, Entra ID, Microsoft Purview, SC-400, Security, Study guide

Design DLP policies based on an organization’s requirements Designing Data Loss Prevention could be based on the regulations of your industry or just internal security principles that should be made to carve the security measure framework in to stone. In…

Continue Reading Section 5 – Implement DLP – Create and configure DLP policies