Microsoft Compliance Policy Implementation

Questions and Answers

What is the primary purpose of using an Exact Data Match (EDM) classification in the HR department's DLP policy?

To identify resumes based on similarities to other resumes received in the past

To mark documents and emails that contain an application serial number as an employment application

To automatically apply a sensitivity label to employment applications and resumes

To detect and notify the HR department of confidential employee attributes shared externally (correct)

Which Microsoft Cloud App Security policy configuration is required to automatically apply a sensitivity label to all draft and finalized sales contracts?

File policy management (correct)

Built-in DLP inspection method

Endpoint DLP configuration

Data classification service inspection

What happens to Tag1 if Policy1 applied the tag to the content?

The content will remain tagged, but the Managed Folder Assistant will ignore Tag1 (correct)

Tag1 will be applied to all content in the site

Tag1 will be removed if Policy1 is disabled

Tag1 will be removed, but the Managed Folder Assistant will still process the content

What is the primary purpose of the built-in DLP inspection method in the HR department's DLP policy?

To identify documents that contain confidential employee attributes

Which action should you perform first to implement the regulatory requirement for documents containing a patent ID?

Create a sensitivity label to apply to documents containing a patent ID

What is the purpose of creating a retention lock?

To prevent a retention policy from being disabled or deleted

Which of the following is a requirement for handling employment applications in the HR department?

Resumes must be identified automatically based on similarities to other resumes received in the past

Which two actions should you perform to automatically mark all contracts as records when they are uploaded to the Contracts document library?

Create a retention label and configure a default label on the Contracts document library

What is the primary purpose of endpoint DLP configuration in the HR department's DLP policy?

To block the sharing of confidential employee attributes externally

How many retention policies do you need to create to delete content after seven years from multiple locations?

2, one for email and one for SharePoint sites

Which of the following is used to detect employment applications and resumes in the HR department's DLP policy?

Exact Data Match (EDM) classification

What happens to File1.docx if User1 deletes it from Site1?

File1.docx will be retained for seven years from the date of deletion

What is the primary purpose of data classification service inspection in the HR department's DLP policy?

To detect and prevent the sharing of confidential employee attributes externally

Which of the following is a requirement for the sales department's DLP policy?

A sensitivity label named Sales Contract must be applied automatically to all draft and finalized sales contracts

Which of the following is a benefit of using a retention policy?

It ensures that files are retained for a specified period of time

What is the primary purpose of a sensitivity label?

To protect sensitive information from unauthorized access

What is a requirement for DLP policies in Fabrikam?

DLP policies must be applied to computers that run Windows 10, with the least possible changes to the computers.

What happens when a document with the Fabrikam Confidential sensitivity label is uploaded to Dropbox?

The file is automatically deleted.

How can users send encrypted email messages?

Users must manually select that email messages are sent encrypted using Office 365 Message Encryption (OME) v2.

What is a requirement for email attachments with the Fabrikam Confidential sensitivity label?

Email attachments must be encrypted automatically using OME.

What is the purpose of the CSV file in the compliance department's plan?

To configure records management in Microsoft 365.

What is a requirement for restoring email received by Fabrikam executives?

Email must be restored for up to three years after an email is received.

What is a requirement for applying the Fabrikam Confidential sensitivity label?

The label must be applied to existing Microsoft Word documents in the Data shared folder that have a document footer containing the string 'Company use only'.

What is the purpose of Records management in Microsoft 365?

To replace existing policies in the third-party records management system.

Study Notes

Compliance Requirements

• All DLP policies must be applied to computers running Windows 10 with minimal changes.
• Users in the compliance department must view justification provided for DLP violation tooltips.
• Documents with the Fabrikam Confidential sensitivity label uploaded to Dropbox must be deleted automatically.
• The Fabrikam Confidential sensitivity label must be applied to existing Microsoft Word documents in the Data shared folder with a document footer containing "Company use only".
• Users must be able to manually select email encryption using Office 365 Message Encryption (OME) v2.
• Emails with attachments having the Fabrikam Confidential sensitivity label must be encrypted automatically using OME.
• Existing policies in the third-party records management system must be replaced using Records management in the Microsoft 365 compliance center.

Executive Requirements

• All email received by Fabrikam executives must be restored for up to three years, even if deleted permanently.

Data Loss Prevention (DLP)

• A solution must be recommended to meet DLP requirements for the HR department.

Regulatory Requirements

• A new regulatory requirement states that all documents containing a patent ID must be labeled, retained for 10 years, and then deleted.
• The policy used to apply retention settings must never be disabled or deleted by anyone.

Records Management

• A solution must be implemented to automatically mark contracts as records when uploaded to the Contracts document library.
• A sensitivity label or retention label must be created, and a default label configured on the Contracts document library.

Retention Policies

• A retention policy must be created to delete content after seven years from various locations (Exchange email, SharePoint sites, OneDrive accounts, Office 365 groups, Teams channel messages, and Teams chats).
• The minimum number of retention policies required is 2.

Business Processes

• Sales contracts are received by email from customers and are not in a standard format.
• Employment applications and resumes are received by HR department managers and stored in various locations.

HR Requirements

• A DLP policy must be created to notify the HR department of a DLP policy violation if a document containing confidential employee attributes is shared externally.
• The DLP policy must use an Exact Data Match (EDM) classification derived from a CSV export of the HR department database.
• Resumes must be identified automatically based on similarities to other resumes received in the past.
• Employment applications and resumes must be deleted automatically two years after receipt.
• Documents and emails with an application serial number must be identified automatically and marked as an employment application.

Sales Requirements

• A sensitivity label named Sales Contract must be applied automatically to all draft and finalized sales contracts.

Description

This quiz assesses your knowledge of implementing compliance policies in Microsoft environments, including DLP policies, sensitivity labels, and data management. It covers topics such as policy application, tooltip justification, and automatic deletion of confidential documents.