Compliance Tools in Microsoft 365 Flashcards

1
Q

(HIPAA) Act that imposes strict privacy regulations on protected health information.

A

Health Insurance Portability Act

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

(FISMA) Act that dictates how United States federal agencies protect information.

A

Federal Information Security Modernization Act

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

(GDPR) Regulation that gives rights to people to manage personal data collected by an organization.

A

General Data Protection Regulation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

(FERPA) Act that covers the use or disclosure of student education records.

A

The Family Educational Rights and Privacy Act

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

(PIPEDA) Act that addresses how private sector organizations collect, use, and disclose personal information.

A

The Personal Information Protection and Electronic Documents Act

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

(GLBA) Act that protects nonpublic personal information.

A

The Gramm-Leach-Bliley Act

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q
  1. Assess
  2. Protect
  3. Respond
A

Three Phases of Compliance Management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

365 Feature that assists with security, privacy, and compliance and helps with understanding an organizations compliance regulations.

A

Service Trust Portal (STP)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Dashboard of organizational data standards, regulations, and assessments.

A

Compliance Manager

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Audit reports, data protection info, and info on 365 features.

A

Trust Documents

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

The name for keeping documents when you need them and getting rid of them when you don’t.

A

Data Governance

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Users don’t get default permissions to perform a privileged task.

A

Zero Standing Access

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Search tool that allows you to review and redact content.

A

eDiscovery

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Capabilities of ________________

  • Ongoing Risk Assessment
  • Actionable Insights
  • Simplified Compliance
A

Compliance Manager (3)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Encrypting data at rest on a physical disk.

A

BitLocker

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Encrypting data in transit at the Transportation layer on the network.

A

TLS

17
Q

Before access to tenant data is granted to a Microsoft engineer, approval is required from the tenant admin.

A

Customer Lockbox

18
Q

Oversight of access requests through logging and an approval process in Microsoft 365.

A

Privileged Access Management

19
Q

A specialized 365 workspace for compliancy, privacy, and risk management helping you assess risks, protect and govern data with sensitivity and retention labels, respond to regulatory requests, and access compliance solutions.

A

Compliance Center

20
Q

Which Azure AD service tier includes only the following:

  • SSO
  • MFA
  • Basic Reports
  • Business-to-business collaboration
A

Azure AD Free

21
Q

Which Azure AD service tier includes all free features plus the following:

  • Self-service password reset
  • Device write-back
A

Microsoft 365

22
Q

Which Azure AD service tier includes all 365 features plus the following:

  • Conditional Access
  • Microsoft Cloud App Discovery
  • Advanced Reports
  • Group access management
  • Hybrid identities
A

Premium 1