Book Image

Microsoft Information Protection Administrator SC-400 Certification Guide

By : Shabaz Darr, Viktor Hedberg

2 (1)

Book Image

Microsoft Information Protection Administrator SC-400 Certification Guide

2 (1)

By: Shabaz Darr, Viktor Hedberg

Overview of this book

Cloud technologies have massively increased the amount of data being produced and the places in which this data is stored. Without proper planning and discipline in configuring information protection for your data, you may be compromising information and regulatory compliance. Microsoft Information Protection Administrator SC-400 Certification Guide begins with an overview of the SC-400 exam, and then enables you to envision, implement, and administer the Information Protection suite offered by Microsoft. The book also provides you with hands-on labs, along with the theory of creating policies and rules for content classification, data loss prevention, governance, and protection. Toward the end, you'll be able to take mock tests to help you prepare effectively for the exam. By the end of this Microsoft book, you'll have covered everything needed to pass the SC-400 certification exam, and have a handy, on-the-job desktop reference guide.

Preface

Who this book is for

What this book covers

To get the most out of this book

Download the color images

Conventions used

Share Your Thoughts

Section 1: Exam Overview and Introduction to Information Protection

Section 1: Exam Overview and Introduction to Information Protection

Free Chapter

Chapter 1: Preparing for Your Microsoft Exam and SC-400 Exam Objectives

Chapter 1: Preparing for Your Microsoft Exam and SC-400 Exam Objectives

Technical requirements

Preparing for a Microsoft exam

Accessing resources and Microsoft Learn

Creating a Microsoft 365 trial account

Introducing the SC-400 exam objectives

Why should I take this exam?

Chapter 2: Introduction to Information Protection

Chapter 2: Introduction to Information Protection

Technical requirements

What is Information Protection?

Information protection use cases

Understanding the scope of Information Protection

Why is Information Protection important?

What are the benefits of implementing Information Protection in your organization?

Section 2: Implementing Information Protection

Section 2: Implementing Information Protection

Chapter 3: Creating and Managing Sensitive Information Types

Chapter 3: Creating and Managing Sensitive Information Types

Technical requirements

Selecting a sensitive information type based on an organization's requirements

Creating and managing custom sensitive information types

Creating custom sensitive information types with exact data matches

Implementing document fingerprinting

Creating a keyword dictionary

Chapter 4: Creating and Managing Trainable Classifiers

Chapter 4: Creating and Managing Trainable Classifiers

Technical requirements

What are trainable classifiers?

Identifying when to use trainable classifiers

Creating a trainable classifier

Verifying that a trainable classifier is performing properly

Retraining a classifier

Chapter 5: Implementing and Managing Sensitivity Labels

Chapter 5: Implementing and Managing Sensitivity Labels

Technical requirements

Identifying roles and permissions for administering sensitivity labels

Creating and managing sensitivity labels and applying sensitivity labels to Microsoft SaaS applications

Configuring automatic labeling policies and monitoring label usage

Applying bulk classification to on-premises data and managing protection settings

Applying and managing protections and restrictions

Chapter 6: Planning and Implementing Encryption for Email Messages

Chapter 6: Planning and Implementing Encryption for Email Messages

Technical requirements

Introduction to encryption in Microsoft 365

Defining requirements for implementing Office 365 Advanced Message Encryption

Implementing Office 365 Advanced Message Encryption

Section 3: Implementing Data Loss Prevention

Section 3: Implementing Data Loss Prevention

Chapter 7: Creating and Configuring Data Loss Prevention Policies

Chapter 7: Creating and Configuring Data Loss Prevention Policies

Technical requirements

Configuring data loss prevention for policy precedence

Configuring policies for Exchange Online, SharePoint sites, OneDrive, and Microsoft Teams

Integrating Information Protection with, and configuring policies in Microsoft Defender for Cloud Apps

Implementing data loss prevention policies in test mode

Chapter 8: Implementing and Monitoring Microsoft Endpoint Data Loss Prevention

Chapter 8: Implementing and Monitoring Microsoft Endpoint Data Loss Prevention

Technical requirements

Onboarding devices to Endpoint DLP

Configuring Endpoint DLP settings

Configuring policies for endpoints

Monitoring endpoint activities

Chapter 9: Managing and Monitoring Data Loss Prevention Policies and Activities

Chapter 9: Managing and Monitoring Data Loss Prevention Policies and Activities

Technical requirements

Managing and responding to DLP policy violations

Reviewing and analyzing DLP reports

Managing permissions for DLP reports

Managing DLP violations in Microsoft Defender for Cloud Apps

Section 4: Implementing Information Governance

Section 4: Implementing Information Governance

Chapter 10: Configuring Retention Policies and Labels

Chapter 10: Configuring Retention Policies and Labels

Technical requirements

Creating and applying retention label policies

Creating and applying retention labels

Configuring and publishing auto-apply label policies

Chapter 11: Managing Data Retention in Microsoft 365

Chapter 11: Managing Data Retention in Microsoft 365

Technical requirements

Creating and applying retention policies in Microsoft SharePoint and OneDrive

Creating and applying retention policies in Microsoft Teams

Recovering content in SharePoint and OneDrive

Implementing retention policies and tags in Microsoft Exchange

Applying mailbox holds in Microsoft Exchange

Implementing Microsoft Exchange Online archiving policies

Chapter 12: Implementing Microsoft Purview Records Management

Chapter 12: Implementing Microsoft Purview Records Management

Technical requirements

Configuring labels for records management

Managing and migrating retention requirements with a file plan

Configuring automatic retention using file plan descriptors

Implementing in-place records management in Microsoft SharePoint

Configuring event-based retention

Managing the disposition of records

Practice Exam

Other Books You May Enjoy

Other Books You May Enjoy

Packt is searching for authors like you

Share Your Thoughts

Customer Reviews

2 (1)

5 star

0

4 star

0

3 star

0

2 star

100%

1 star

0

Why is Information Protection important?

Information Protection is an important feature to help you stay compliant with regulatory requirements such as the following:

GDPR
LGPD
HIPAA-HITECH

Information Protection helps you with insights and technical enforcement to stay compliant with all three mentioned previously.

Regulatory requirements are of course a big part of why Information Protection is important, but the intellectual property of your organization could be a big part of this as well, making sure that sensitive information about your organization or your business does not fall into the wrong hands.

Bear in mind that the implementation of Information Protection does not automatically protect you from any harm on its own. The implementation must be accompanied by policies with regard to information and sharing it internally, as well as the will of your employees to understand why it is important to label information, protect it, and minimize the...