Select Page

Study Guide, Resources, and Notes for Administering Information Protection and Compliance in M365 (Exam SC-400)

Study Guide, Resources, and Notes for Administering Information Protection and Compliance in M365 (Exam SC-400)

Please see the links and notes below. I have added links to most, if not all, of the exam objectives.

Implement information protection (25–30%)

Create and manage sensitive info types

Create and manage trainable classifiers

Implement and manage sensitivity labels

Design and implement encryption for email messages

Implement DLP (15–20%)

Create and configure DLP policies

Implement and monitor Endpoint DLP

Monitor and manage DLP activities

  • Analyze DLP reports
  • Analyze DLP activities by using Activity explorer
  • Remediate DLP alerts in the Microsoft Purview compliance portal
  • Remediate DLP alerts generated by Defender for Cloud Apps

Implement data lifecycle and records management (10–15%)

Retain and delete data by using retention labels

  • Plan for information retention and disposition by using retention labels
  • Create retention labels for data lifecycle management
  • Configure and manage adaptive scopes
  • Configure a retention label policy to publish labels
  • Configure a retention label policy to auto-apply labels
  • Interpret the results of policy precedence, including using Policy lookup

Manage data retention in Microsoft 365 workloads

  • Create and apply retention policies for SharePoint and OneDrive
  • Create and apply retention policies for Microsoft 365 groups
  • Create and apply retention policies for Teams
  • Create and apply retention policies for Yammer
  • Create and apply retention policies for Exchange Online
  • Apply mailbox holds in Exchange Online
  • Implement Exchange Online archiving policies
  • Configure preservation locks for retention policies and retention label policies
  • Recover retained content in Microsoft 365

Implement Microsoft Purview records management

  • Create and configure retention labels for records management
  • Manage retention labels by using a file plan, including file plan descriptors
  • Classify records by using retention labels and retention label policies
  • Manage event-based retention
  • Manage the disposition of content in records management
  • Configure records management settings, including retention label settings and disposition settings

Monitor and investigate data and activities by using Microsoft Purview (15–20%)

Plan and manage regulatory requirements by using Microsoft Purview Compliance Manager

  • Plan for regulatory compliance in Microsoft 365
  • Create and manage assessments
  • Create and modify custom templates
  • Interpret and manage improvement actions
  • Create and manage alert policies for assessments
  • Choose between eDiscovery (Standard) and eDiscovery (Premium) based on an organization’s requirements
  • Plan and implement eDiscovery
  • Delegate permissions to use eDiscovery and Content search
  • Perform searches and respond to results from eDiscovery
  • Manage eDiscovery cases
  • Perform searches by using Content search

Manage and analyze audit logs and reports in Microsoft Purview

  • Choose between Audit (Standard) and Audit (Premium) based on an organization’s requirements
  • Plan for and configure auditing
  • Investigate activities by using the unified audit log
  • Review and interpret compliance reports and dashboards
  • Configure alert policies
  • Configure audit retention policies

Manage insider and privacy risk in Microsoft 365 (15–20%)

Implement and manage Microsoft Purview Communication Compliance

  • Plan for communication compliance
  • Create and manage communication compliance policies
  • Investigate and remediate communication compliance alerts and reports

Implement and manage Microsoft Purview Insider Risk Management

  • Plan for insider risk management
  • Create and manage insider risk management policies
  • Investigate and remediate insider risk activities, alerts, and reports
  • Manage insider risk cases
  • Manage forensic evidence settings
  • Manage notice templates

Implement and manage Microsoft Purview Information Barriers (IBs)

  • Plan for IBs
  • Create and manage IB segments and policies
  • Configure Teams, SharePoint, and OneDrive to enforce IBs, including setting barrier modes
  • Investigate issues with IB policies

Implement and manage privacy requirements by using Microsoft Priva

  • Configure and maintain privacy risk management
  • Create and manage Privacy Risk Management policies
  • Identify and monitor potential risks involving personal data
  • Evaluate and remediate alerts and issues
  • Implement and manage subject rights requests

About The Author

Eric Rupp

I am a Data Security Technical Specialist with a concentration on Microsoft Purview, M365 Copilot, and AI. All writing and opinions are my own and do not represent any organization outside of Cloudtoso LLC.

Share This