SC-400: Administering Information Protection and Compliance in Microsoft 365

Learn how to protect information in your Microsoft 365 deployment. This course focuses on data governance and information protection within your organization. The course covers implementation of data loss prevention policies, sensitive information types, sensitivity labels, data retention policies and Office 365 message encryption among other related topics.

Audience

Job role: Administrator, Risk Practitioner, Security Engineer.

This training is aimed at persons that will have the role and responsibilities as Information Protection Administrator, and persons that will prepare for the Microsoft Information Protection Administrator exam (SC-400).

Prerequisites

Before attending this course, students should have:

  • Foundational knowledge of Microsoft security and compliance technologies
  • Basic knowledge of information protection concepts
  • Understanding of cloud computing concepts
  • Understanding of Microsoft 365 products and services.

Skills gained

  • Explain and use sensitivity labels
  • Configure Data Loss Prevention policies
  • Secure messages in Office 365
  • Describe the information governance configuration process
  • Define key terms associated with Microsoft’s information protection and governance solutions
  • Explain the Content explorer and Activity explorer
  • Describe how to use sensitive information types and trainable classifiers
  • Review and analyze DLP reports
  • Identify and mitigate DLP policy violations
  • Describe the integration of DLP with Microsoft Cloud App Security (MCAS)
  • Deploy Endpoint DLP
  • Describe records management
  • Configure event driven retention
  • Import a file plan
  • Configure retention policies and labels
  • Create custom keyword dictionaries
  • Implement document fingerprinting

Course content

Module 1: Implement Information Protection in Microsoft 365

  • Introduction to information protection and governance in Microsoft 365
  • Classify data for protection and governance
  • Create and manage sensitive information types
  • Describe Microsoft 365 encryption
  • Deploy message encryption in Office 365
  • Configure sensitivity labels
  • Apply and manage sensitivity labels

Module 2: Implement Data Loss Prevention in Microsoft 365

  • Prevent Data loss in Microsoft 365
  • Implement Endpoint data loss prevention
  • Configure DLP policies for Microsoft Cloud App Security and Power Platform
  • Manage DLP policies and reports in Microsoft 365

Module 3: Implement Information Governance in Microsoft 365

  • Govern information in Microsoft 365
  • Manage data retention in Microsoft 365 workloads
  • Manage records in Microsoft 365

Certification

This course is recommended preparation for exam SC-400: Microsoft Information Protection Administrator

If you pass exam SC-400 you will obtain the Microsoft Certified: Information Protection Administrator Associate certification

The SC-400 exam is one of the associate exams that counts towards the Microsoft Certified: Cybersecurity Architect Expert certification.