Podcast
Questions and Answers
What is the primary purpose of using an Exact Data Match (EDM) classification in the HR department's DLP policy?
What is the primary purpose of using an Exact Data Match (EDM) classification in the HR department's DLP policy?
Which Microsoft Cloud App Security policy configuration is required to automatically apply a sensitivity label to all draft and finalized sales contracts?
Which Microsoft Cloud App Security policy configuration is required to automatically apply a sensitivity label to all draft and finalized sales contracts?
What happens to Tag1 if Policy1 applied the tag to the content?
What happens to Tag1 if Policy1 applied the tag to the content?
What is the primary purpose of the built-in DLP inspection method in the HR department's DLP policy?
What is the primary purpose of the built-in DLP inspection method in the HR department's DLP policy?
Signup and view all the answers
Which action should you perform first to implement the regulatory requirement for documents containing a patent ID?
Which action should you perform first to implement the regulatory requirement for documents containing a patent ID?
Signup and view all the answers
What is the purpose of creating a retention lock?
What is the purpose of creating a retention lock?
Signup and view all the answers
Which of the following is a requirement for handling employment applications in the HR department?
Which of the following is a requirement for handling employment applications in the HR department?
Signup and view all the answers
Which two actions should you perform to automatically mark all contracts as records when they are uploaded to the Contracts document library?
Which two actions should you perform to automatically mark all contracts as records when they are uploaded to the Contracts document library?
Signup and view all the answers
What is the primary purpose of endpoint DLP configuration in the HR department's DLP policy?
What is the primary purpose of endpoint DLP configuration in the HR department's DLP policy?
Signup and view all the answers
How many retention policies do you need to create to delete content after seven years from multiple locations?
How many retention policies do you need to create to delete content after seven years from multiple locations?
Signup and view all the answers
Which of the following is used to detect employment applications and resumes in the HR department's DLP policy?
Which of the following is used to detect employment applications and resumes in the HR department's DLP policy?
Signup and view all the answers
What happens to File1.docx if User1 deletes it from Site1?
What happens to File1.docx if User1 deletes it from Site1?
Signup and view all the answers
What is the primary purpose of data classification service inspection in the HR department's DLP policy?
What is the primary purpose of data classification service inspection in the HR department's DLP policy?
Signup and view all the answers
Which of the following is a requirement for the sales department's DLP policy?
Which of the following is a requirement for the sales department's DLP policy?
Signup and view all the answers
Which of the following is a benefit of using a retention policy?
Which of the following is a benefit of using a retention policy?
Signup and view all the answers
What is the primary purpose of a sensitivity label?
What is the primary purpose of a sensitivity label?
Signup and view all the answers
What is a requirement for DLP policies in Fabrikam?
What is a requirement for DLP policies in Fabrikam?
Signup and view all the answers
What happens when a document with the Fabrikam Confidential sensitivity label is uploaded to Dropbox?
What happens when a document with the Fabrikam Confidential sensitivity label is uploaded to Dropbox?
Signup and view all the answers
How can users send encrypted email messages?
How can users send encrypted email messages?
Signup and view all the answers
What is a requirement for email attachments with the Fabrikam Confidential sensitivity label?
What is a requirement for email attachments with the Fabrikam Confidential sensitivity label?
Signup and view all the answers
What is the purpose of the CSV file in the compliance department's plan?
What is the purpose of the CSV file in the compliance department's plan?
Signup and view all the answers
What is a requirement for restoring email received by Fabrikam executives?
What is a requirement for restoring email received by Fabrikam executives?
Signup and view all the answers
What is a requirement for applying the Fabrikam Confidential sensitivity label?
What is a requirement for applying the Fabrikam Confidential sensitivity label?
Signup and view all the answers
What is the purpose of Records management in Microsoft 365?
What is the purpose of Records management in Microsoft 365?
Signup and view all the answers
Study Notes
Compliance Requirements
- All DLP policies must be applied to computers running Windows 10 with minimal changes.
- Users in the compliance department must view justification provided for DLP violation tooltips.
- Documents with the Fabrikam Confidential sensitivity label uploaded to Dropbox must be deleted automatically.
- The Fabrikam Confidential sensitivity label must be applied to existing Microsoft Word documents in the Data shared folder with a document footer containing "Company use only".
- Users must be able to manually select email encryption using Office 365 Message Encryption (OME) v2.
- Emails with attachments having the Fabrikam Confidential sensitivity label must be encrypted automatically using OME.
- Existing policies in the third-party records management system must be replaced using Records management in the Microsoft 365 compliance center.
Executive Requirements
- All email received by Fabrikam executives must be restored for up to three years, even if deleted permanently.
Data Loss Prevention (DLP)
- A solution must be recommended to meet DLP requirements for the HR department.
Regulatory Requirements
- A new regulatory requirement states that all documents containing a patent ID must be labeled, retained for 10 years, and then deleted.
- The policy used to apply retention settings must never be disabled or deleted by anyone.
Records Management
- A solution must be implemented to automatically mark contracts as records when uploaded to the Contracts document library.
- A sensitivity label or retention label must be created, and a default label configured on the Contracts document library.
Retention Policies
- A retention policy must be created to delete content after seven years from various locations (Exchange email, SharePoint sites, OneDrive accounts, Office 365 groups, Teams channel messages, and Teams chats).
- The minimum number of retention policies required is 2.
Business Processes
- Sales contracts are received by email from customers and are not in a standard format.
- Employment applications and resumes are received by HR department managers and stored in various locations.
HR Requirements
- A DLP policy must be created to notify the HR department of a DLP policy violation if a document containing confidential employee attributes is shared externally.
- The DLP policy must use an Exact Data Match (EDM) classification derived from a CSV export of the HR department database.
- Resumes must be identified automatically based on similarities to other resumes received in the past.
- Employment applications and resumes must be deleted automatically two years after receipt.
- Documents and emails with an application serial number must be identified automatically and marked as an employment application.
Sales Requirements
- A sensitivity label named Sales Contract must be applied automatically to all draft and finalized sales contracts.
Studying That Suits You
Use AI to generate personalized quizzes and flashcards to suit your learning preferences.
Related Documents
Description
This quiz assesses your knowledge of implementing compliance policies in Microsoft environments, including DLP policies, sensitivity labels, and data management. It covers topics such as policy application, tooltip justification, and automatic deletion of confidential documents.