From the course: Microsoft Information Security Administrator Associate (SC-401) Cert Prep by Microsoft Press

Exam SC-401 administering information security in Microsoft 365: Introduction - Microsoft 365 Tutorial

From the course: Microsoft Information Security Administrator Associate (SC-401) Cert Prep by Microsoft Press

Start my 1-month free trial Buy for my team

Exam SC-401 administering information security in Microsoft 365: Introduction

Hi everyone, and welcome to the SC401 course, Administering Information Security in Microsoft 365. My name is Sarah Young, and I'll be your instructor for this training. I've worked in IT for the last 15 years, and spent the last seven of them at Microsoft, working in a variety of security focus roles. I'm thrilled to guide you through this certification journey, where we're going to deep dive into securing sensitive data across M365 environments and beyond. My goal with this course is to provide you with a comprehensive overview of the key information protection and security capabilities available in M365, and to equip you with the practical knowledge necessary to safeguard sensitive data within your organization. Microsoft 365 offers a wide range of tools and features for information security, some of which you already may be familiar with, and others that might be new to you. This course is designed for all backgrounds and does not assume any prior experience with Microsoft Security. My aim is to help you navigate the various information protection technologies, such as data classification, sensitivity labels, DLP, retention, insider risk management, and more. By the end of this course, you'll understand how to apply these solutions in real-world scenarios, making it easier for both IT and business professionals to protect data, manage risk, and meet compliance requirements. The SC401 exam is designed for information security administrators, professionals who are responsible for implementing and managing security controls to protect organizational data from internal and external threats. Of course, in your organization, you might call them something slightly different. So with that, let's talk about the modules in this course. The first module, Implement Information Protection, begins with a look at how to identify, define, and classify information. We'll also look at sensitivity labels for securing data, as well as how to extend information protection to devices and services. This first module consists of three lessons. The next module, Implement Data Loss Prevention and retention is all about preventing data leaks, securing endpoints, and managing data retention and consists of three lessons as well. The final module in this course, Manage Risks, Alerts, and Activities, focuses on mitigating internal threats, auditing and monitoring activity alerts and incidents, and securing data in AI-driven environments through controls, policies, and monitoring. This final module also consists of three lessons. This structure will guide you step-by-step through the essential areas of information security in M365, helping you build both foundational knowledge and practical skills for real-world scenarios. This SC401 course was designed to help you prepare for the SC401 exam, guiding you through the essential concepts and practical skills that you'll need to succeed. We'll cover a wide range of features, some which you may already know, and some might be completely new to you. Microsoft continues to enhance these tools, so what may seem complex today will likely to become even more streamlined and powerful over time, so stick with it. Take each lesson at your own pace. There's no need to rush, and you'll get the most out of this course by taking your time and trying the features for yourself as you go. In fact, I thoroughly recommend you follow along where you can. I hope these lessons give you a strong foundation in Microsoft 365 information security that you can build on for years to come. And with that, let's get started.

Contents