Describe the compliance management capabilities in Microsoft Purview Flashcards
Microsoft Purview compliance portal
organizations manage their compliance needs
Who is the compliance portal available to?
customers with a Microsoft 365 SKU with one of the following roles:
global administrator
compliance administrator
compliance data administrator
Card Section
automatic visual when signed in
shows a glance of how your organization is doing with data
shows solutions & active alerts
Who can customize the card section?
Admins
they can add / remove or move cards around
Compliance manager card
simplify the way you manage compliance.
calculates risk based compliance score
recommended actions to reduce risks
workflow capabilities and built in control mapping
Solution catalog card
links to collections of integrated solutions to help you manage end to end compliance scenarios incuding
information protection and governance
privacy
insider risk management
discovery & response
Active alerts card
include a summary of the most active alerts and link where admins can view more detailed info such as
alert severity
status
category
Navigation
left side of screen
easy access to compliance manager & data classification page
access reports
alerts, policies
solutions
custom navigation
allows customization of which items appear in the navigation pane
Compliance Manager
feature in the Microsoft Purview compliance portal
what does the compliance manager do?
helps admins to manage an organizations compliance requirements with greater ease and convenience
Compliance Manager helps simplify compliance and reduce risk by providing:
prebuilt assessments
workflow capabilities
step by step improvement actions
compliance score
what does the compliance manager dashboard display?
current compliance score which helps admins to see what needs attention
Controls
requirement of regulation, standard, or policy.
defines how to assess and manage
Compliance manager tracks these types of controls
Microsoft managed controls
Your controls
Shared controls
t or f
Compliance Manager continuously assesses controls by scanning through your Microsoft 365 environment and detecting your system settings, continuously and automatically updating your technical action status
true
Assessments
grouping of controls from a specific regulation, standard, or policy
Templates
to help admins quickly create assessments
Improvement actions
centralize compliance activities
provides recommended guidance
admins can store documentation, notes, record status updates
Benefits of compliance manager
Translating complicated regulations, standards, policies
providing access to assessments
mapping regulatory controls
step by step guidance for solutions
prioritize actions
t or f
Compliance Manager helps organizations measure progress in completing actions that help reduce risks around data protection and regulatory standards
true
how is the overall compliance score calculated?
by using scores that are assigned to actions
What are the two types of actions
Your improved actions - organization is expected to manage
Microsoft actions - Microsoft manages
actions are categorized as
mandatory - shouldn’t be bypassed
discretionary - depend on the users understanding and adhering to a policy
sub categories of actions that can be classified as mandatory or discretionary
preventative
detective
corrective
difference between Compliance Manager and Compliance Score?
manager - end to end solution in portal for admins to manage and track
score - calculation of the overall compliance posture across the organization
t or f
Compliance Manager gives admins the capabilities to understand and increase their compliance score
true
A new admin has joined the team and needs to be able to access the Microsoft Purview compliance portal. Which of the following roles could the admin use to access the compliance portal?
Compliance Administrator role
Your new colleagues on the admin team are unfamiliar with the concept of shared controls in Compliance Manager. How would the concept of shared controls be explained?
Controls that both your organization and Microsoft share responsibility for implementing
A customer has requested a presentation on how the Microsoft Purview compliance portal can help improve their organization’s compliance posture. The presentation will need to cover Compliance Manager and compliance score. What is the difference between Compliance Manager and compliance score?
Compliance Manager is an end-to-end solution, in the Microsoft Purview compliance portal, to enable admins to manage and track compliance activities. Compliance score is a calculation of the overall compliance posture across the organization.
