Microsoft Information Protection Administrator Training (SC-400)

Learn about the information available to help you understand your data landscape and know your data.

Upon completion of this module, you should be able to:

• List the components of the Data Classification solution.
• Identify the cards available on the Data Classification Overview tab.
• Explain the Content explorer and Activity explorer.
• Describe how to use sensitive information types and trainable classifiers.

Learn how to use sensitive information types to support your information protection strategy.

After completing this module, you will be able to:

• Recognise the difference between built-in and custom sensitivity labels.
• Configure sensitive information types with exact data match-based classification.
• Implement document fingerprinting.
• Create custom keyword dictionaries.

Learn how Microsoft 365 encrypts data-at-rest and in transit, securely manages encryption keys, and provides critical management options to customers to meet their business needs and compliance obligations.

Upon completion of this module, you should be able to:

• Explain how encryption mitigates the risk of unauthorised data disclosure.
• Describe Microsoft data-at-rest and data-in-transit encryption solutions.
• Explain how Microsoft 365 implements service encryption to protect customer data at the application layer.
• Understand the differences between Microsoft and customer-managed keys for use with service encryption.

Learn about the different encryption methods Microsoft Purview provides to protect messages.

After completing this module, you will be able to:

• Configure Microsoft Purview Message Encryption for end users.
• Implement Microsoft Purview Advanced Message Encryption.

Learn how to detect sensitive content as it's used and shared throughout your organisation, in the cloud and on devices, and help prevent accidental data loss.

Upon completion of this module, you should be able to:

• Discuss the information protection solution and its benefits.
• List the customer scenarios the information protection solution addresses.
• Describe the information protection configuration process.
• Explain what users will experience when the solution is implemented.
• Articulate deployment and adoption of best practices.

Learn how sensitivity labels are used to classify and protect business data while ensuring user productivity and that their collaboration ability is not hindered.

After completing this module, you will be able to:

• Apply sensitivity labels to Microsoft Teams, Microsoft 365 groups, and SharePoint sites.
• Monitor label usage using label analytics.
• Configure on-premises labeling.
• Manage protection settings and marking for applied sensitivity labels.
• Apply protections and restrictions to email.
• Apply protections and restrictions to files.

Learn how to discover, classify, and protect sensitive and business-critical content throughout its lifecycle across your organisation.

When you finish with this module, you'll be able to:

• Discuss the data loss prevention solution and its benefits.
• Describe the data loss prevention configuration process.
• Explain what users will experience when the solution is implemented.

Learn to configure and implement data loss prevention policies and integrate them with Microsoft Defender for Cloud Apps.

After completing this module, you will be able to:

• Describe the integration of DLP with Microsoft Defender for Cloud Apps.
• Configure policies in Microsoft Defender for Cloud Apps.

Learn how to manage data loss prevention policies and mitigate data loss prevention policy violations.

After completing this module, you'll be able to:

• Review and analyse DLP reports.
• Manage permissions for DLP reports.
• Identify and mitigate DLP policy violations.
• Mitigate DLP violations in Microsoft Defender for Cloud Apps.

Learn how to manage your content lifecycle using solutions to import, store, and classify business-critical data so you can keep what you need and delete what you don't.

Upon completion of this module, you should be able to:

• Discuss the Data Lifecycle Management solution and its benefits.
• List the customer scenarios the Data Lifecycle Management solution addresses.
• Describe the Data Lifecycle Management configuration process.
• Explain what users will experience when the solution is implemented.
• Articulate deployment and adoption of best practices.

Learn how to manage retention for Microsoft 365 and how retention solutions are implemented in the individual Microsoft 365 services.

After completing this module, you will be able to:

• Describe the retention features in Microsoft 365 workloads.
• Configure retention settings in Microsoft Teams, Yammer, and SharePoint Online.
• Recover content protected by retention settings.
• Regain protected items from Exchange Mailboxes.

Learn how to use intelligent classification to automate and simplify your organisation's retention schedule for regulatory, legal, and business-critical records.

Upon completion of this module, you should be able to:

• Discuss the Microsoft Purview Records Management solution and its benefits.
• List the customer scenarios the Microsoft Purview Records Management solution addresses.
• Describe the Microsoft Purview Records Management configuration process.
• Explain what users will experience when the solution is implemented.
• Articulate deployment and adoption of best practices.

This module explores the tools Microsoft 365 provides to help ensure an organisation's regulatory compliance, including the Microsoft Purview compliance portal, Compliance Manager, and the Microsoft compliance score.

By the end of this module, you should be able to:

• Describe how Microsoft 365 helps organisations manage risks, protect data, and comply with regulations and standards.
• Plan your beginning compliance tasks in Microsoft Purview.
• Manage your compliance requirements with the Compliance Manager.
• Manage compliance posture and improvement actions using the Compliance Manager dashboard.
• Explain how an organisation's compliance score is determined.

This module examines how to search for content in the Microsoft Purview compliance portal using Content Search functionality, including how to view and export the search results and configure search permissions filtering.

By the end of this module, you'll be able to:

• Describe how to use content search in the Microsoft Purview compliance portal.
• Design and create a content search.
• Preview the search results.
• View the search statistics.
• Export the search results and search report.
• Configure search permission filtering.

This module explores how to use Microsoft Purview eDiscovery (Standard) to create an eDiscovery case and a hold for a case, manage case content, and close, reopen, and delete a case.

By the end of this module, you'll be able to:

• Describe how Microsoft Purview eDiscovery (Standard) builds on the basic search and export functionality of Content search.
• Describe the basic workflow of eDiscovery (Standard).
• Create an eDiscovery case.
• Create an eDiscovery hold for an eDiscovery case.
• Search for content in a case and then export that content.
• Close, reopen, and delete a case.

This module explores using Microsoft Purview eDiscovery (Premium) to preserve, collect, analyse, review, and export content responsive to an organisation's internal and external investigations and communicate with custodians involved in a case.

By the end of this module, you'll be able to:

• Describe how Microsoft Purview eDiscovery (Premium) builds on eDiscovery (Standard).
• Describe the basic workflow of eDiscovery (Premium).
• Create and manage cases in eDiscovery (Premium).
• Manage custodians and non-custodial data sources.
• Analyse case content and use analytical tools to reduce the size of search result sets.

This module examines how to search for audited activities using the Microsoft Purview Audit (Standard) solution, including exporting, configuring, and viewing the audit log records retrieved from an audit log search.

By the end of this module, you'll be able to:

• Describe the differences between Audit (Standard) and Audit (Premium).
• Identify the core features of the Audit (Standard) solution.
• Set up and implement audit log searching using the Audit (Standard) solution.
• Export, configure, and view audit log records.
• Use audit log searching to troubleshoot common support issues.

Microsoft Purview Communication Compliance is a solution that helps organisations address code-of-conduct policy violations in company communications while assisting organisations in regulated industries to meet specific supervisory compliance requirements. Communication Compliance uses machine learning to detect violations across communication channels such as Microsoft Teams, Exchange Online, or Yammer messages.

Upon completion of this module, you should be able to:

• List the enhancements in communication compliance over Office 365 Supervision policies, which it will replace.
• Explain how to identify and remediate code-of-conduct policy violations.
• List the prerequisites that need to be met before creating communication compliance policies.
• Describe the types of built-in, pre-defined policy templates.

Microsoft Purview Insider Risk Management helps organisations address internal risks, such as IP theft, fraud, and sabotage. Learn about insider risk management and how Microsoft technologies can help you detect, investigate, and take action on risky activities in your organisation.

Upon completion of this module, you should be able to:

• Explain how Microsoft Purview Insider Risk Management can help prevent, detect, and contain internal risks in an organisation.
• Describe the types of built-in, pre-defined policy templates.
• List the prerequisites that need to be met before creating insider risk policies.
• Explain the actions you can take on an insider risk management case.

This module examines how Microsoft Purview uses information barriers to restrict communication and collaboration in Microsoft Teams, SharePoint Online, and OneDrive for Business.

By the end of this module, you should be able to:

• Describe how information barriers can restrict or allow communication and collaboration among specific groups of users.
• Describe the components of an information barrier and how to enable information barriers.
• Understand how information barriers help organisations determine which users to add or remove from a Microsoft Team, OneDrive account, and SharePoint site.
• Describe how information barriers prevent users or groups from communicating and collaborating in Microsoft Teams, OneDrive, and SharePoint.

Learn to use Microsoft Priva to manage privacy risk policies and subject rights requests.

Upon completion of this module, the learner will be able to:

• Create and manage risk management policies for data overexposure, data transfer, and data minimisation.
• Investigate and remediate risk alerts.
• Send user notifications.
• Create and manage Subject Rights Requests.
• Estimate and retrieve subject data.
• Review subject data.
• Create subject rights reports.

This module examines how to search for audited activities using the Microsoft Purview Audit (Standard) solution, including exporting, configuring, and viewing the audit log records retrieved from an audit log search.

By the end of this module, you'll be able to:

• Describe the differences between Audit (Standard) and Audit (Premium).
• Identify the core features of the Audit (Standard) solution.
• Set up and implement audit log searching using the Audit (Standard) solution.
• Export, configure, and view audit log records.
• Use audit log searching to troubleshoot common support issues.

Customer Lockbox supports requests to access data in Exchange Online, SharePoint Online, and OneDrive when Microsoft engineers need to access customer content to determine the root cause and fix an issue. Customer Lockbox requires the engineer to request access from the customer as a final step in the approval workflow. This allows organisations to approve or deny these requests and provide direct access control to the customer.

Upon completion of this module, you should be able to:

• Describe the Customer Lockbox workflow.
• Explain how to approve or deny a Customer Lockbox request.
• Explain how you can audit actions performed by Microsoft engineers when access requests are approved.