Administering Information Protection and Compliance in Microsoft 365 (SC-400) Practice Exam
Administering Information Protection and Compliance in Microsoft 365 (SC-400) Practice Exam
About Administering Information Protection and Compliance in Microsoft 365 (SC-400) Exam
The Administering Information Protection and Compliance in Microsoft 365 (SC-400) exam has been developed to measure the skills and ability of the candidate to perform the technical tasks including -
- Implementing information protection
- Implementing data loss prevention
- Implementing information governance
Who should take the SC-300 Exam?
The candidates taking the exam are information protection and compliance administrators who plan and implement risk and compliance controls in the Microsoft Purview compliance portal.
Roles and Responsibilities
The information protection and compliance administrator are responsible to -
- Translates an organization’s risk and compliance requirements into technical implementation.
- Implement and manage solutions for content classification, data loss prevention (DLP), information protection, data lifecycle management, records management, privacy, risk, and compliance.
- Work with other roles that are responsible for governance, data, and security to evaluate and develop policies to address an organization's risk reduction and compliance goal
Assists workload administrators, business application owners, human resources departments, and legal stakeholders to implement technology solutions that support the necessary policies and controls.
Skills and Knowledge Required
Candidates should have experience with Microsoft 365 services, including Microsoft 365 Apps, Microsoft Exchange Online, Microsoft SharePoint Online, Microsoft OneDrive, and Microsoft Teams. They should also be familiar with PowerShell.
Course Outline
The Microsoft SC-400 exam covers the latest exam updates and topics as per exam updates as on August 22 2023 -
Module 1 - Describe to implement information protection (25–30%)
1.1 Explain to create and manage sensitive info types
- Learn to identify sensitive information requirements for an organization's data
- Learn to translate sensitive information requirements into built-in or custom sensitive info types
- Learn to create and manage custom sensitive info types
- Learn to create and manage exact data match (EDM) classifiers
- Learn to implement document fingerprinting
1.2 Explain to create and manage trainable classifiers
- Learn to identify when to use trainable classifiers
- Learn to design and create a trainable classifier
- Learn to test a trainable classifier
- Learn to retrain a trainable classifier
1.3 Explain to implement and manage sensitivity labels
- Learn to implement roles and permissions for administering sensitivity labels
- Learn to define and create sensitivity labels
- Learn to configure and manage sensitivity label policies
- Learn to configure auto-labeling policies for sensitivity labels
- Learn to monitor data classification and label usage by using Content explorer, Activity explorer, and audit search
- Learn to apply bulk classification to on-premises data by using the Microsoft Purview Information Protection scanner
- Learn to manage protection settings and marking for applied sensitivity labels
1.4 Explain Design and implement encryption for email messages
- Learn to design an email encryption solution based on methods available in Microsoft 365
- Learn to implement Microsoft Purview Message Encryption
- Learn to implement Microsoft Purview Advanced Message Encryption
Module 2 - Describe to implement DLP (15–20%)
2.1 Explain to create and configure DLP policies
- Learn to design DLP policies based on an organization’s requirements
- Learn to configure permissions for DLP
- Learn to Create and manage DLP policies
- Learn to interpret policy and rule precedence in DLP
- Learn to configure a Microsoft Defender for Cloud Apps file policy to use DLP policies
2.2 Explain implementing and monitoring Endpoint DLP
- Learn to configure advanced DLP rules for devices in DLP policies
- Learn to configure Endpoint DLP settings
- Learn to recommend a deployment method for device onboarding
- Learn to identify endpoint requirements for device onboarding
- Learn to monitor endpoint activities
- Learn to implement the Microsoft Purview Extension
2.3 Explain monitoring and managing DLP activities
- Learn to analyze DLP reports
- Learn to analyze DLP activities by using Activity explorer
- Learn to remediate DLP alerts in the Microsoft Purview compliance portal
- Learn to remediate DLP alerts generated by Defender for Cloud Apps
- Learn to implement data lifecycle and records management (10–15%)
- Learn to retain and delete data by using retention labels
- Learn to plan for information retention and disposition by using retention labels
- Learn to create retention labels for data lifecycle management
- Learn to configure and manage adaptive scopes
- Learn to configure a retention label policy to publish labels
- Learn to configure a retention label policy to auto-apply labels
- Learn to interpret the results of policy precedence, including using Policy lookup
2.3 Explain to manage data retention in Microsoft 365 workloads
- Learn to create and apply retention policies for SharePoint and OneDrive
- Learn to create and apply retention policies for Microsoft 365 groups
- Learn to create and apply retention policies for Teams
- Learn to create and apply retention policies for Yammer
- Learn to create and apply retention policies for Exchange Online
- Learn to apply mailbox holds in Exchange Online
- Learn to implement Exchange Online archiving policies
- Learn to configure preservation locks for retention policies and retention label policies
- Learn to recover retained content in Microsoft 365
2.4 Explain implementing Microsoft Purview records management
- Learn to create and configure retention labels for records management
- Learn to manage retention labels by using a file plan, including file plan descriptors
- Learn to classify records by using retention labels and retention label policies
- Learn to manage event-based retention
- Learn to manage the disposition of content in records management
- Learn to configure records management settings, including retention label settings and disposition settings
Module 3 - Describe monitoring and investigate data and activities by using Microsoft Purview (15–20%)
3.1 Explain planning and managing regulatory requirements by using Microsoft Purview Compliance Manager
- Learn to plan for regulatory compliance in Microsoft 365
- Learn to create and manage assessments
- Learn to create and modify custom templates
- Learn to interpret and manage improvement actions
- Learn to create and manage alert policies for assessments
3.2 Explain planning and managing eDiscovery and Content search
- Learn to select between eDiscovery (Standard) and eDiscovery (Premium) based on an organization’s requirements
- Learn to plan and implement eDiscovery
- Learn to delegate permissions to use eDiscovery and Content search
- Learn to perform searches and respond to results from eDiscovery
- Learn to manage eDiscovery cases
- Learn to perform searches by using Content search
3.3 Manage and analyze audit logs and reports in Microsoft Purview
- Learn to select between Audit (Standard) and Audit (Premium) based on an organization’s requirements
- Learn to plan for and configure auditing
- Learn to investigate activities by using the unified audit log
- Learn to review and interpret compliance reports and dashboards
- Learn to configure alert policies
- Learn to configure audit retention policies
Domain 4 - Describe managing insider and privacy risk in Microsoft 365 (15–20%)
4.1 Explain implementing and managing Microsoft Purview Communication Compliance
- Learn to plan for communication compliance
- Learn to create and manage communication compliance policies
- Learn to investigate and remediate communication compliance alerts and reports
4.2 Explain Implementing and managing Microsoft Purview Insider Risk Management
- Learn to plan for insider risk management
- Learn to create and manage insider risk management policies
- Learn to investigate and remediate insider risk activities, alerts, and reports
- Learn to manage insider risk cases
- Learn to manage forensic evidence settings
- Learn to manage notice templates
4.3 Explain implementing and managing Microsoft Purview Information Barriers (IBs)
- Learn to plan for IBs
- Learn to create and manage IB segments and policies
- Learn to configure Teams, SharePoint, and OneDrive to enforce IBs, including setting barrier modes
- Learn to Investigate issues with IB policies
4.4 Explain implementing and managing privacy requirements by using Microsoft Priva
- Learn to configure and maintain privacy risk management
- Learn to create and manage Privacy Risk Management policies
- Learn to identify and monitor potential risks involving personal data
- Learn to evaluate and remediate alerts and issues
- Learn to implement and manage subject rights requests
What do we offer?
- Full-Length Mock Test with unique questions in each test set
- Practice objective questions with section-wise scores
- In-depth and exhaustive explanation for every question
- Reliable exam reports evaluating strengths and weaknesses
- Latest Questions with an updated version
- Tips & Tricks to crack the test
- Unlimited access
What are our Practice Exams?
- Practice exams have been designed by professionals and domain experts that simulate real-time exam scenario.
- Practice exam questions have been created on the basis of content outlined in the official documentation.
- Each set in the practice exam contains unique questions built with the intent to provide real-time experience to the candidates as well as gain more confidence during exam preparation.
- Practice exams help to self-evaluate against the exam content and work towards building strength to clear the exam.
- You can also create your own practice exam based on your choice and preference
