Microsoft Information Protection Administrator SC-400 Certification Guide

By : Shabaz Darr, Viktor Hedberg

2 (1)

Buy this Book

Microsoft Information Protection Administrator SC-400 Certification Guide

2 (1)

By: Shabaz Darr, Viktor Hedberg

Buy this Book

Overview of this book

Cloud technologies have massively increased the amount of data being produced and the places in which this data is stored. Without proper planning and discipline in configuring information protection for your data, you may be compromising information and regulatory compliance. Microsoft Information Protection Administrator SC-400 Certification Guide begins with an overview of the SC-400 exam, and then enables you to envision, implement, and administer the Information Protection suite offered by Microsoft. The book also provides you with hands-on labs, along with the theory of creating policies and rules for content classification, data loss prevention, governance, and protection. Toward the end, you'll be able to take mock tests to help you prepare effectively for the exam. By the end of this Microsoft book, you'll have covered everything needed to pass the SC-400 certification exam, and have a handy, on-the-job desktop reference guide.

Preface

Who this book is for

What this book covers

To get the most out of this book

Download the color images

Conventions used

Get in touch

Reviews

Share Your Thoughts

Section 1: Exam Overview and Introduction to Information Protection

Free Chapter

Chapter 1: Preparing for Your Microsoft Exam and SC-400 Exam Objectives

Technical requirements

Preparing for a Microsoft exam

Accessing resources and Microsoft Learn

Creating a Microsoft 365 trial account

Introducing the SC-400 exam objectives

Why should I take this exam?

Summary

Chapter 2: Introduction to Information Protection

Technical requirements

What is Information Protection?

Information protection use cases

Understanding the scope of Information Protection

Why is Information Protection important?

What are the benefits of implementing Information Protection in your organization?

Summary

Section 2: Implementing Information Protection

Chapter 3: Creating and Managing Sensitive Information Types

Technical requirements

Selecting a sensitive information type based on an organization's requirements

Creating and managing custom sensitive information types

Creating custom sensitive information types with exact data matches

Implementing document fingerprinting

Creating a keyword dictionary

Summary

Chapter 4: Creating and Managing Trainable Classifiers

Technical requirements

What are trainable classifiers?

Identifying when to use trainable classifiers

Creating a trainable classifier

Verifying that a trainable classifier is performing properly

Retraining a classifier

Summary

Chapter 5: Implementing and Managing Sensitivity Labels

Technical requirements

Identifying roles and permissions for administering sensitivity labels

Creating and managing sensitivity labels and applying sensitivity labels to Microsoft SaaS applications

Configuring automatic labeling policies and monitoring label usage

Applying bulk classification to on-premises data and managing protection settings

Applying and managing protections and restrictions

Summary

Chapter 6: Planning and Implementing Encryption for Email Messages

Technical requirements

Introduction to encryption in Microsoft 365

Defining requirements for implementing Office 365 Advanced Message Encryption

Implementing Office 365 Advanced Message Encryption

Summary

Section 3: Implementing Data Loss Prevention

Chapter 7: Creating and Configuring Data Loss Prevention Policies

Technical requirements

Configuring data loss prevention for policy precedence

Configuring policies for Exchange Online, SharePoint sites, OneDrive, and Microsoft Teams

Integrating Information Protection with, and configuring policies in Microsoft Defender for Cloud Apps

Implementing data loss prevention policies in test mode

Summary

Chapter 8: Implementing and Monitoring Microsoft Endpoint Data Loss Prevention

Technical requirements

Onboarding devices to Endpoint DLP

Configuring Endpoint DLP settings

Configuring policies for endpoints

Monitoring endpoint activities

Summary

Chapter 9: Managing and Monitoring Data Loss Prevention Policies and Activities

Technical requirements

Managing and responding to DLP policy violations

Reviewing and analyzing DLP reports

Managing permissions for DLP reports

Managing DLP violations in Microsoft Defender for Cloud Apps

Summary

Section 4: Implementing Information Governance

Chapter 10: Configuring Retention Policies and Labels

Technical requirements

Creating and applying retention label policies

Creating and applying retention labels

Configuring and publishing auto-apply label policies

Summary

Chapter 11: Managing Data Retention in Microsoft 365

Technical requirements

Creating and applying retention policies in Microsoft SharePoint and OneDrive

Creating and applying retention policies in Microsoft Teams

Recovering content in SharePoint and OneDrive

Implementing retention policies and tags in Microsoft Exchange

Applying mailbox holds in Microsoft Exchange

Implementing Microsoft Exchange Online archiving policies

Summary

Chapter 12: Implementing Microsoft Purview Records Management

Technical requirements

Configuring labels for records management

Managing and migrating retention requirements with a file plan

Configuring automatic retention using file plan descriptors

Implementing in-place records management in Microsoft SharePoint

Configuring event-based retention

Managing the disposition of records

Summary

Practice Exam

Test questions

Answer key

Why subscribe?

Other Books You May Enjoy

Packt is searching for authors like you

Share Your Thoughts

Customer Reviews

2 (1)

5 star

4 star

3 star

2 star

100%

1 star

Monitoring endpoint activities

There are several built-in reports available for DLP in the compliance center (https://compliance.microsoft.com), which will be covered in Chapter 9, Managing and Monitoring Data Loss Prevention Policies and Activities.

To monitor the endpoint activities, we will instead use the activity explorer in the compliance center. Navigate to either one of the following places:

Data classification | Activity explorer
Data loss prevention | Activity explorer

Using the activity explorer, we can see exactly what our onboarded devices are doing when it comes to creating items, editing items, moving items, and/or sharing them. The information is collected from the Microsoft 365 unified audit logs, transformed, and made available in the activity explorer interface:

Figure 8.20 – The activity explorer shows us all activities performed on endpoints

You can use the activity explorer to drill down into specific events...

Microsoft Information Protection Administrator SC-400 Certification Guide

By : Shabaz Darr, Viktor Hedberg

Microsoft Information Protection Administrator SC-400 Certification Guide

By: Shabaz Darr, Viktor Hedberg

Overview of this book

Related Content you might be interested in

Current Title:

Microsoft Information Protection Administrator SC-400 Certification Guide

Microsoft 365 Security, Compliance, and Identity Administration

Microsoft 365 Security Administration: MS-500 Exam Guide

Microsoft 365 Mobility and Security ‚Äö√Ñ√¨ Exam Guide MS-101

Monitoring endpoint activities