Stay ahead by continuously learning and advancing your career.. Learn More

Microsoft Information Protection Administrator (SC-400) Practice Exam

description

Bookmark Enrolled Intermediate

Microsoft Information Protection Administrator (SC-400) Practice Exam


The Microsoft SC-400 certification is designed for information protection and compliance administrators who are involved in planning and executing risk and compliance controls within the Microsoft Purview compliance portal.

In this, candidates are tasked with translating the risk and compliance requirements of an organization into technical implementations. Their responsibilities include the implementation and management of solutions for content classification, data loss prevention (DLP), information protection, data lifecycle management, records management, privacy, risk, and compliance.

They collaborate with other roles responsible for governance, data, and security to assess and formulate policies aimed at addressing the risk reduction and compliance objectives of an organization. Additionally, they provide assistance to workload administrators, business application owners, human resources departments, and legal stakeholders in implementing technology solutions that align with the required policies and controls.


Who should take the exam?

The exam is best suitable for those having experience with Microsoft 365 services, including:

  • Microsoft 365 Apps
  • Microsoft Exchange Online
  • Microsoft SharePoint
  • Microsoft OneDrive
  • Microsoft Teams

And, candidates should also be familiar with PowerShell.


Exam Details

  • Exam Code: SC-400
  • Exam Name: Administering Information Protection and Compliance in Microsoft 365
  • Exam Languages: English, Spanish, French, Italian, Japanese, Korean, Portuguese (Brazil), Chinese (Simplified), Chinese (Traditional)
  • Exam Questions: 40-60 Questions
  • Passing Score: 700 or greater (On a scale 1 - 1000)


SC-400 Exam Course Outline 

The Microsoft SC-400 Exam covers the given topics  - 

Domain 1: Learn about implementing information protection (25–30%)

Create and manage sensitive info types

  • Identify sensitive information requirements for an organization's data
  • Translate sensitive information requirements into built-in or custom sensitive info types
  • Create and manage custom sensitive info types
  • Create and manage exact data match (EDM) classifiers
  • Implement document fingerprinting


Create and manage trainable classifiers

  • Identify when to use trainable classifiers
  • Design and create a trainable classifier
  • Test a trainable classifier
  • Retrain a trainable classifier


Implement and manage sensitivity labels

  • Implement roles and permissions for administering sensitivity labels
  • Define and create sensitivity labels
  • Configure and manage sensitivity label policies
  • Configure auto-labeling policies for sensitivity labels
  • Monitor data classification and label usage by using Content explorer, Activity explorer, and audit search
  • Apply bulk classification to on-premises data by using the Microsoft Purview Information Protection scanner
  • Manage protection settings and marking for applied sensitivity labels


Design and implement encryption for email messages

  • Design an email encryption solution based on methods available in Microsoft 365
  • Implement Microsoft Purview Message Encryption
  • Implement Microsoft Purview Advanced Message Encryption


Domain 2: Understand about implementing DLP (15–20%)

Create and configure DLP policies

  • Design DLP policies based on an organization’s requirements
  • Configure permissions for DLP
  • Create and manage DLP policies
  • Interpret policy and rule precedence in DLP
  • Configure a Microsoft Defender for Cloud Apps file policy to use DLP policies


Implement and monitor Endpoint DLP

  • Configure advanced DLP rules for devices in DLP policies
  • Configure Endpoint DLP settings
  • Recommend a deployment method for device onboarding
  • Identify endpoint requirements for device onboarding
  • Monitor endpoint activities
  • Implement the Microsoft Purview Extension


Monitor and manage DLP activities

  • Analyze DLP reports
  • Analyze DLP activities by using Activity explorer
  • Remediate DLP alerts in the Microsoft Purview compliance portal
  • Remediate DLP alerts generated by Defender for Cloud Apps


Domain 3: Implementing data lifecycle and records management (10–15%)

Retain and delete data by using retention labels

  • Plan for information retention and disposition by using retention labels
  • Create retention labels for data lifecycle management
  • Configure and manage adaptive scopes
  • Configure a retention label policy to publish labels
  • Configure a retention label policy to auto-apply labels
  • Interpret the results of policy precedence, including using Policy lookup


Manage data retention in Microsoft 365 workloads

  • Create and apply retention policies for SharePoint and OneDrive
  • Create and apply retention policies for Microsoft 365 groups
  • Create and apply retention policies for Teams
  • Create and apply retention policies for Yammer
  • Create and apply retention policies for Exchange Online
  • Apply mailbox holds in Exchange Online
  • Implement Exchange Online archiving policies
  • Configure preservation locks for retention policies and retention label policies
  • Recover retained content in Microsoft 365


Implement Microsoft Purview records management

  • Create and configure retention labels for records management
  • Manage retention labels by using a file plan, including file plan descriptors
  • Classify records by using retention labels and retention label policies
  • Manage event-based retention
  • Manage the disposition of content in records management
  • Configure records management settings, including retention label settings and disposition settings


Domain 4: Understand Monitoring and investigating data and activities by using Microsoft Purview (15–20%)

Plan and manage regulatory requirements by using Microsoft Purview Compliance Manager

  • Plan for regulatory compliance in Microsoft 365
  • Create and manage assessments
  • Create and modify custom templates
  • Interpret and manage improvement actions
  • Create and manage alert policies for assessments


Plan and manage eDiscovery and Content search

  • Choose between eDiscovery (Standard) and eDiscovery (Premium) based on an organization’s requirements
  • Plan and implement eDiscovery
  • Delegate permissions to use eDiscovery and Content search
  • Perform searches and respond to results from eDiscovery
  • Manage eDiscovery cases
  • Perform searches by using Content search


Manage and analyze audit logs and reports in Microsoft Purview

  • Choose between Audit (Standard) and Audit (Premium) based on an organization’s requirements
  • Plan for and configure auditing
  • Investigate activities by using the unified audit log
  • Review and interpret compliance reports and dashboards
  • Configure alert policies
  • Configure audit retention policies


Domain 5: Managing insider and privacy risk in Microsoft 365 (15–20%)

Implement and manage Microsoft Purview Communication Compliance

  • Plan for communication compliance
  • Create and manage communication compliance policies
  • Investigate and remediate communication compliance alerts and reports


Implement and manage Microsoft Purview Insider Risk Management

  • Plan for insider risk management
  • Create and manage insider risk management policies
  • Investigate and remediate insider risk activities, alerts, and reports
  • Manage insider risk cases
  • Manage forensic evidence settings
  • Manage notice templates


Implement and manage Microsoft Purview Information Barriers (IBs)

  • Plan for IBs
  • Create and manage IB segments and policies
  • Configure Teams, SharePoint, and OneDrive to enforce IBs, including setting barrier modes
  • Investigate issues with IB policies


Implement and manage privacy requirements by using Microsoft Priva

  • Configure and maintain privacy risk management
  • Create and manage Privacy Risk Management policies
  • Identify and monitor potential risks involving personal data
  • Evaluate and remediate alerts and issues
  • Implement and manage subject rights requests




Reviews

Tags: Microsoft Information Protection Administrator (SC-400) Practice Exam, Microsoft Information Protection Administrator (SC-400) Test, Microsoft Information Protection Administrator (SC-400) MCQ,

Microsoft Information Protection Administrator (SC-400) Practice Exam

Microsoft Information Protection Administrator (SC-400) Practice Exam

  • Test Code:1156-P
  • Availability:In Stock

  • $7.99

  • Ex Tax:$7.99


%s reviews / Write a review

Microsoft Information Protection Administrator (SC-400) Practice Exam


The Microsoft SC-400 certification is designed for information protection and compliance administrators who are involved in planning and executing risk and compliance controls within the Microsoft Purview compliance portal.

In this, candidates are tasked with translating the risk and compliance requirements of an organization into technical implementations. Their responsibilities include the implementation and management of solutions for content classification, data loss prevention (DLP), information protection, data lifecycle management, records management, privacy, risk, and compliance.

They collaborate with other roles responsible for governance, data, and security to assess and formulate policies aimed at addressing the risk reduction and compliance objectives of an organization. Additionally, they provide assistance to workload administrators, business application owners, human resources departments, and legal stakeholders in implementing technology solutions that align with the required policies and controls.


Who should take the exam?

The exam is best suitable for those having experience with Microsoft 365 services, including:

  • Microsoft 365 Apps
  • Microsoft Exchange Online
  • Microsoft SharePoint
  • Microsoft OneDrive
  • Microsoft Teams

And, candidates should also be familiar with PowerShell.


Exam Details

  • Exam Code: SC-400
  • Exam Name: Administering Information Protection and Compliance in Microsoft 365
  • Exam Languages: English, Spanish, French, Italian, Japanese, Korean, Portuguese (Brazil), Chinese (Simplified), Chinese (Traditional)
  • Exam Questions: 40-60 Questions
  • Passing Score: 700 or greater (On a scale 1 - 1000)


SC-400 Exam Course Outline 

The Microsoft SC-400 Exam covers the given topics  - 

Domain 1: Learn about implementing information protection (25–30%)

Create and manage sensitive info types

  • Identify sensitive information requirements for an organization's data
  • Translate sensitive information requirements into built-in or custom sensitive info types
  • Create and manage custom sensitive info types
  • Create and manage exact data match (EDM) classifiers
  • Implement document fingerprinting


Create and manage trainable classifiers

  • Identify when to use trainable classifiers
  • Design and create a trainable classifier
  • Test a trainable classifier
  • Retrain a trainable classifier


Implement and manage sensitivity labels

  • Implement roles and permissions for administering sensitivity labels
  • Define and create sensitivity labels
  • Configure and manage sensitivity label policies
  • Configure auto-labeling policies for sensitivity labels
  • Monitor data classification and label usage by using Content explorer, Activity explorer, and audit search
  • Apply bulk classification to on-premises data by using the Microsoft Purview Information Protection scanner
  • Manage protection settings and marking for applied sensitivity labels


Design and implement encryption for email messages

  • Design an email encryption solution based on methods available in Microsoft 365
  • Implement Microsoft Purview Message Encryption
  • Implement Microsoft Purview Advanced Message Encryption


Domain 2: Understand about implementing DLP (15–20%)

Create and configure DLP policies

  • Design DLP policies based on an organization’s requirements
  • Configure permissions for DLP
  • Create and manage DLP policies
  • Interpret policy and rule precedence in DLP
  • Configure a Microsoft Defender for Cloud Apps file policy to use DLP policies


Implement and monitor Endpoint DLP

  • Configure advanced DLP rules for devices in DLP policies
  • Configure Endpoint DLP settings
  • Recommend a deployment method for device onboarding
  • Identify endpoint requirements for device onboarding
  • Monitor endpoint activities
  • Implement the Microsoft Purview Extension


Monitor and manage DLP activities

  • Analyze DLP reports
  • Analyze DLP activities by using Activity explorer
  • Remediate DLP alerts in the Microsoft Purview compliance portal
  • Remediate DLP alerts generated by Defender for Cloud Apps


Domain 3: Implementing data lifecycle and records management (10–15%)

Retain and delete data by using retention labels

  • Plan for information retention and disposition by using retention labels
  • Create retention labels for data lifecycle management
  • Configure and manage adaptive scopes
  • Configure a retention label policy to publish labels
  • Configure a retention label policy to auto-apply labels
  • Interpret the results of policy precedence, including using Policy lookup


Manage data retention in Microsoft 365 workloads

  • Create and apply retention policies for SharePoint and OneDrive
  • Create and apply retention policies for Microsoft 365 groups
  • Create and apply retention policies for Teams
  • Create and apply retention policies for Yammer
  • Create and apply retention policies for Exchange Online
  • Apply mailbox holds in Exchange Online
  • Implement Exchange Online archiving policies
  • Configure preservation locks for retention policies and retention label policies
  • Recover retained content in Microsoft 365


Implement Microsoft Purview records management

  • Create and configure retention labels for records management
  • Manage retention labels by using a file plan, including file plan descriptors
  • Classify records by using retention labels and retention label policies
  • Manage event-based retention
  • Manage the disposition of content in records management
  • Configure records management settings, including retention label settings and disposition settings


Domain 4: Understand Monitoring and investigating data and activities by using Microsoft Purview (15–20%)

Plan and manage regulatory requirements by using Microsoft Purview Compliance Manager

  • Plan for regulatory compliance in Microsoft 365
  • Create and manage assessments
  • Create and modify custom templates
  • Interpret and manage improvement actions
  • Create and manage alert policies for assessments


Plan and manage eDiscovery and Content search

  • Choose between eDiscovery (Standard) and eDiscovery (Premium) based on an organization’s requirements
  • Plan and implement eDiscovery
  • Delegate permissions to use eDiscovery and Content search
  • Perform searches and respond to results from eDiscovery
  • Manage eDiscovery cases
  • Perform searches by using Content search


Manage and analyze audit logs and reports in Microsoft Purview

  • Choose between Audit (Standard) and Audit (Premium) based on an organization’s requirements
  • Plan for and configure auditing
  • Investigate activities by using the unified audit log
  • Review and interpret compliance reports and dashboards
  • Configure alert policies
  • Configure audit retention policies


Domain 5: Managing insider and privacy risk in Microsoft 365 (15–20%)

Implement and manage Microsoft Purview Communication Compliance

  • Plan for communication compliance
  • Create and manage communication compliance policies
  • Investigate and remediate communication compliance alerts and reports


Implement and manage Microsoft Purview Insider Risk Management

  • Plan for insider risk management
  • Create and manage insider risk management policies
  • Investigate and remediate insider risk activities, alerts, and reports
  • Manage insider risk cases
  • Manage forensic evidence settings
  • Manage notice templates


Implement and manage Microsoft Purview Information Barriers (IBs)

  • Plan for IBs
  • Create and manage IB segments and policies
  • Configure Teams, SharePoint, and OneDrive to enforce IBs, including setting barrier modes
  • Investigate issues with IB policies


Implement and manage privacy requirements by using Microsoft Priva

  • Configure and maintain privacy risk management
  • Create and manage Privacy Risk Management policies
  • Identify and monitor potential risks involving personal data
  • Evaluate and remediate alerts and issues
  • Implement and manage subject rights requests