Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Microsoft Information Protection Administrator SC-400 Certification Guide

You're reading from   Microsoft Information Protection Administrator SC-400 Certification Guide Advance your Microsoft Security & Compliance services knowledge and pass the SC-400 exam with confidence

Arrow left icon
Product type Paperback
Published in Feb 2022
Publisher Packt
ISBN-13 9781801811491
Length 326 pages
Edition 1st Edition
Arrow right icon
Authors (2):
Arrow left icon
Shabaz Darr Shabaz Darr
Author Profile Icon Shabaz Darr
Shabaz Darr
Viktor Hedberg Viktor Hedberg
Author Profile Icon Viktor Hedberg
Viktor Hedberg
Arrow right icon
View More author details
Toc

Table of Contents (19) Chapters Close

Preface 1. Section 1: Exam Overview and Introduction to Information Protection
2. Chapter 1: Preparing for Your Microsoft Exam and SC-400 Exam Objectives FREE CHAPTER 3. Chapter 2: Introduction to Information Protection 4. Section 2: Implementing Information Protection
5. Chapter 3: Creating and Managing Sensitive Information Types 6. Chapter 4: Creating and Managing Trainable Classifiers 7. Chapter 5: Implementing and Managing Sensitivity Labels 8. Chapter 6: Planning and Implementing Encryption for Email Messages 9. Section 3: Implementing Data Loss Prevention
10. Chapter 7: Creating and Configuring Data Loss Prevention Policies 11. Chapter 8: Implementing and Monitoring Microsoft Endpoint Data Loss Prevention 12. Chapter 9: Managing and Monitoring Data Loss Prevention Policies and Activities 13. Section 4: Implementing Information Governance
14. Chapter 10: Configuring Retention Policies and Labels 15. Chapter 11: Managing Data Retention in Microsoft 365 16. Chapter 12: Implementing Microsoft Purview Records Management 17. Practice Exam 18. Other Books You May Enjoy

Managing and responding to DLP policy violations

In the case where a DLP policy alerts an admin that a DLP policy violation has occurred, it can have multiple meanings. It does not always mean that data loss has occurred or has been stopped. You will get alerted if a policy violation has been observed; however, the policy will not take any action based on the reason for trying to share the data that is protected. Escalating any violation to the organization's security team is a reactive action you can take, and you would work with them and key stakeholders to investigate the issue.

A good example is if you are working for an organization that protects highly sensitive information (financial data is a common example) to stop any sharing of client data with third parties. You get several alerts at the end of the month that there have been violations of the specific policy in place for this. When you look at the reports, you see a high level of emails from a department within...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime
Banner background image