SC-401: Information Security in Microsoft 365

Course SC-401: Administering Information Security in Microsoft 365

The Information Security Administrator course provides you with the skills necessary to plan and implement information security for sensitive data using Microsoft Purview and related services.

The course covers essential topics such as information protection , data loss prevention (DLP) , retention, and internal risk management .

You will learn how to protect data in Microsoft 365 collaboration environments against internal and external threats. You will also learn how to manage security alerts and respond to incidents by investigating activity, responding to DLP alerts, and managing internal risk cases.

You will also learn how to protect data used by AI services in Microsoft environments and implement controls to safeguard content in these environments.

Online course with a free certification exam included. Don't miss this opportunity! The exam is valued at €126 + VAT and is included at no extra cost.

Promotion valid until December 31, 2025. One-opportunity exam available only in Virtual - E-learning format. Not applicable to Self-Learning format.

Level: Intermediate - Role: Administrator, Information Protection and Compliance Administrator, Risk Practitioner - Product: Microsoft 365, Microsoft Purview - Subject: Security

Microsoft 365 Information Security - Microsoft Purview - Data Loss Prevention (DLP) - Internal Risk Management - Cloud Security - AI Data Protection - Information Security Administrator Certification

Course aimed at

As an Information Security Administrator, you will plan and implement information security for sensitive data using Microsoft Purview and related services. You will be responsible for mitigating risks by protecting data in Microsoft 365 collaboration environments against internal and external threats, as well as safeguarding data used by AI services. Your role involves implementing information protection, data loss prevention (DLP), retention, and internal risk management. You will also manage security alerts and respond to incidents by investigating activity, responding to DLP alerts, and managing internal risk cases. In this role, you will collaborate with other governance, data, and security professionals to develop policies that address your organization's information security and risk reduction objectives. You will work with workload administrators, enterprise application owners, and governance stakeholders to implement technology solutions that support these policies and controls.

Training objectives

• Implementing information protection: You will learn how to use Microsoft Purview and other related services to protect sensitive data within Microsoft 365 collaboration environments.
  
• Prevent data loss (DLP): You will configure DLP policies to monitor and prevent the leakage of sensitive data.
  
• Manage data retention: You will implement retention policies to ensure that data is maintained in accordance with regulatory and organizational requirements.
  
• Managing internal risks: You will learn to identify and mitigate internal risks through security alert management and incident response.
  
• Protect data used by AI services: You will implement controls to protect data used by artificial intelligence services within Microsoft environments.

Elements of the SC-401 formation

• Implementation of Microsoft Purview Information Protection (9 modules)
• Implementation and administration of Microsoft Purview data loss prevention (4 modules)
• Implementation and administration of Microsoft Purview Internal Risk Management (5 modules)
• Protecting AI interactions and environments with Microsoft Purview (4 modules)
• Implementation and administration of Microsoft 365 retention and recovery (2 modules)
• Audit and search activity in Microsoft Purview (2 modules)

Course content SC-401 Information Security in Microsoft 365

Module 1. Implementation of Information Protection

Lessons

• Protecting confidential data in a digital world
• Data classification for protection and governance
• Review and analysis of data classification and protection
  
• Creation and management of confidential information types
  
• Creating and managing confidentiality labels with Microsoft Purview
  
• Application and management of confidentiality labels
  
• Describe Microsoft 365 encryption
  
• Implementing message encryption in Microsoft Purview

Laboratories: Implementation of information protection

• Exercise 0: Prepare the environment for administration
  
• Exercise 1: Managing compliance and security roles
  
• Exercise 2: Creating and managing types of confidential information
  
• Exercise 3: Creating and managing confidentiality labels
  
• Exercise 4: Implementing Microsoft Purview Message Encryption

Module 2. Implementation and management of data loss prevention

Lessons

• Planning and design of data loss prevention policies
• Creation and administration of DLP policies
• Implement endpoint data loss prevention
• Research on DLP alerts in Microsoft Purview

Laboratory: Implementation and management of data loss prevention

• Exercise 1: Implementation and administration of DLP policies
• Exercise 2: Implementation and administration of endpoint DLP

Module 3. Implementation and administration of Microsoft Purview Internal Risk Management

Lessons

• Plan and prepare internal risk management
• Prepare internal risk management
• Create and manage internal risk policies
• Manage the internal risk management workflow
• Investigation of internal risk management activities
• Implement adaptive protection in internal risk management

Laboratory: Implementation and administration of Microsoft Purview Internal Risk Management

• Exercise 1: Implementation of internal risk management
  
• Exercise 2: Implementation of adaptive protection
  

Module 4. Protecting AI Interactions and Environments with Microsoft Purview

Lessons

• Description of Microsoft Purview AI protections
  
• Protecting Microsoft 365 Copilot interactions with Microsoft Purview
  
• Protecting non-Microsoft enterprise and AI applications with
• Microsoft Purview
  
• Protecting AI environments for developers with Microsoft Purview

Lab: Data protection in AI environments with Microsoft Purview

• Lab exercise: Protecting data in AI environments
  

Module 5. Implementation and management of Microsoft Purview retention and recovery

Lessons

• Description of retention in Microsoft Purview
  
• Implementation and administration of Microsoft Purview retention and recovery

Lab: Implementing and managing retention and recovery with Microsoft Purview

• Lab exercise: Configuring retention policies

Module 6. Audit and Search Activity in Microsoft Purview

Lessons

• Search and investigation with the Microsoft Purview audit
  
• Content search with Microsoft Purview eDiscovery

Lab: Implementing and managing retention and recovery with Microsoft Purview

• Exercise 1: Search the audit log
• Exercise 2: Perform a content search
  

Module 7. Confidentiality validation, DLP and retention policies

Lab exercise: Confidentiality validation, DLP, and retention policies

You'll verify that the policies you've configured, sensitivity labels, DLP, and retention are working as expected in Microsoft 365 apps. This exercise helps confirm that the content:

• It is labeled and protected in Microsoft Word. DLP blocks it when confidential information is shared in Outlook.
• It is properly retained and labeled in SharePoint.

Prerequisites

Before participating in this course, students must have:

• Familiarity with Microsoft Purview compliance solutions
• Basic understanding of data security and protection concepts
• Basic knowledge of Microsoft security and compliance technologies
• Basic knowledge of information protection concepts
  
• Basic knowledge of Microsoft 365 data governance functionalities
  
• Basic knowledge of audit logs and content detection
  

Language

• Course: English / Spanish
• Labs: English / Spanish

Microsoft Associate Certification: Information Security Administrator Associate

Microsoft Certified: Information Security Administrator Associate

Demonstrate the fundamentals of data security, lifecycle management, information security, and compliance to protect a Microsoft 365 implementation.

Level: Intermediate
Role: Administrator
Product: Microsoft 365 Security Center
Subject: Security