Introduction

  • 3 minutes

Suppose you're the lead system engineer and server administrator at Contoso, Ltd., a medium-size electronics company based in London with a branch office in New York. Most of Contoso's compute environment runs on-premises on Windows Server, and its cloud services are under evaluation.

Contoso has an outdated operational model that uses limited automation and relies on older technology. The Contoso IT Engineering team is exploring the capabilities of Azure and the Microsoft 365 platform to help modernize its current operational model through automation and virtualization.

Contoso is also considering using Microsoft 365 productivity services instead of locally deployed services for email, intranet, and storage. You need to evaluate the data privacy, data protection, and compliance capabilities of Azure and the Microsoft 365 platform. You must decide whether these services sufficiently address Contoso's legal concerns and compliance requirements.

Microsoft data classification and information protection technologies can help you know your data, protect your data, and avoid data loss. In this module, you learn to use tools like Microsoft Purview Information Protection and Microsoft Defender for Cloud Apps.

Learning objectives

Understand and know how to use:

  • Microsoft Purview Information Protection built-in labeling.
  • Sensitivity labels and label policies.
  • The Azure Information Protection unified labeling client.
  • The Information Protection scanner.
  • Microsoft Defender for Cloud Apps.
  • Microsoft 365 service encryption and Microsoft Purview Customer Key.
  • Microsoft Purview Message Encryption.

Prerequisites

  • Basic knowledge of data protection and security concepts and technologies.
  • Basic experience with Microsoft Azure and Microsoft 365 or Office 365 services.
  • To create and publish sensitivity labels: Administrative access to a labeling admin center such as the Microsoft Purview Compliance Portal, Microsoft Defender portal, or Exchange admin center.
  • To use the Information Protection scanner: An Azure tenant ID, a Microsoft Entra account, and administrative access to a Windows Server client computer with a SQL Server instance.

Note

If you're not a Microsoft E5 customer, try a 90-day Microsoft Purview Solutions Trial to explore how Microsoft Purview can help your organization manage data security and compliance.