Describe information protection, data lifecycle management, and data governance capabilities in Micro Purview Flashcards
Describe Microsoft Purview Data Lifecycle Management
Microsoft Purview Data Lifecycle Management manages your content lifecycle using solutions to import, store, and classify business-critical data so you can keep what you need and delete what you don’t
Information protection and data lifecycle management work together to classify, protect, and govern your data where it lives, and where it goes.
Know your data, protect your data, prevent data loss, and govern your data.
Describe the data classification capabilities of the compliance portal
Companies need to know their data to identify important information across the estate and ensure that data is handled in line with compliance requirements.
Microsoft Purview provides 3 ways of identifying items so that they can be classified:
-Manually by users
-Automated pattern recognition, like sensitive information types
-Machine learning.
Desribe sensitive informtion types
Sensitive information types (SIT) are pattern-based classifiers. examples include:
-credit card numbers
-passport numbers
-bank account
-
Describe Trainable Classifiers
Trainable classifiers use artificial intelligence and machine learning to intelligently classify your data.
Two types of classifiers are:
-Pre-trained classifiers: Ready to use 5 pre-trained classifiers for resumes, source code, harassment, profanity, and threat.
-Custom trainable classifiers: make your own
What is the content explorer?
It is available as a tab in the data classification pane of the compliance portal. It enables administrators to gain visibility into the content that has been summarized in the overview pane.
Two types of roles can access this:
-Content explorer list viewer
-Content explorer content viewer
What is the activity explorer?
Activity explorer provides visibility into what content has been discovered and labeled, and where that content is. It makes it possible to monitor what’s being done with labeled content across the org.
They can filter by activity type:
-like changing of label
-label applied
-etc.
They can also filter by data:
-location
-user
-sensitivity label
etc.
Describe Data Loss Prevention (DLP)
With a DLP policy, you can identify, monitor, and automatically protect sensitive items across:
-Teams, Exchange, SharePoint, OneDrive
-Word, excel
-Windows 10…
-Cloud apps
-Power BI and on-premise files
Protective actions that DLP policies can take include:
-Show a pop-up policy tip
-Block the sharing
-Block the sharing without override
-For data at rest, items can be locked and moved to a secure location
-For Teams chat, the sensitive information won’t be displayed
Policies can be created y predefined templates or can be custom.
Describe retention policies and retention labels
Retention policies:
-Retention policies are used to assign the same retention settings to content as a site level or mailbox level.
-A single policy can be applied to multiple locations, or to specific locations or users,
-Items inherit the retention settings from their container specified in the retention policy.
Retention Labels
-Retention labels are used to assign retention settings at an item level, such as a folder, document, or email.
-An email or document can have only a single retention label assigned to it at a time.
-Retention settings from retention labels travel with the content.
-Admins can enable users in the organization to apply a retention label manually.
-A retention label can be applied automatically if it matches defined conditions.
-
Describe Records Management
Microsoft Purview Records Management helps an org look after its legal obligations. It is to manage regulatory, legal, and business-critical records across their corporate data.
Managing includes many features, including:
-Labeling content as a record.
-Establishing retention and deletion policies
-Triggering event-based retention
-Reviewing and validating disposition.
-Proof of records deletion.
-Exporting information about disposed items.
When content is labeled as a record, the following happens:
-Restrictions are put in place to block certain activities
-Activities are logged
-Proof of disposition is kept at the end of the retention period.
Describe the Microsoft Purview unified data governance solution
Microsoft Purview unified data governance portal provides a unified data governance service that helps you manage your on-premises, multi-cloud, and SaaS data. It allows you to:
-Create a holistic, up-to-date map of your data landscape with automated data discovery, sensitive data classification, and end-to-end data lineage.
-Enable data curators to manage and secure your data estate.
-Empower data consumers to find valuable, trustworthy data.
-Data Map provides the foundation for data discovery and data governance.
-With Data Catalog, business, and technical users can quickly and easily find relevant data using a search experience with filters based on various lenses like glossary terms, classifications, sensitivity labels, and more.
-Data Estate Insights, data officers and security officers can get a bird’s eye view and at a glance understand what data is actively scanned, where sensitive data is, and how it moves.
-