You're reading from Microsoft Office 365 Administration Cookbook

Product typeBook

Published inSep 2020

PublisherPackt

ISBN-139781838551230

Edition1st Edition

Tools

Office 365

Concepts

Business Process Management

Author (1)

Nate Chamberlain

Chapter 12: Deploying Data Loss Prevention and eDiscovery

In this chapter, we'll discover recipes involving both Data Loss Prevention (DLP) and eDiscovery in Office 365. With the right data loss prevention settings in place, your organization's sensitive data will be protected from creation through its entire content lifecycle. eDiscovery adds to your organization's ability to perform investigations involving placing legal holds on content, creating cases for in-depth analysis of content across several apps and services and more.

We'll cover these specific recipes related to DLP and eDiscovery:

Creating a DLP policy to protect content with HIPAA-protected data detected
Using DLP to automatically report HIPAA incidents
Creating a DLP policy for content with custom keywords in the name or subject
Tuning a sensitive information type's confidence level
Creating an eDiscovery case
Managing eDiscovery cases
Creating an advanced...

Technical requirements

You should be a global or compliance administrator to complete most recipes in this chapter.

Creating a DLP policy to protect content with HIPAA-protected data detected

In this chapter, we'll be utilizing the Microsoft 365 compliance admin center to create a DLP policy that detects HIPAA-protected content, warns users about sharing the protected content, and blocks people from outside the organization from accessing it. It will also provide users with the opportunity to override for false positives (HIPAA-protected content detected but not actually present) or with business justification.

Getting ready

You should be a global or compliance administrator to complete this recipe.

How to do it…

Go to the Microsoft 365 compliance center at https://compliance.microsoft.com.
Click Show all from the left navigation menu.
Select Data loss prevention:
Figure 12.1 – Data loss prevention link in the left-hand navigation menu of the Microsoft 365 compliance center
Click Create policy:
Figure 12.2 – The Create policy button on the Data...

Using DLP to automatically report HIPAA incidents

In the previous recipe, we created a DLP policy that detected HIPAA-protected content and sent an incident report as part of its handling. In this recipe, we'll edit an existing DLP policy and add an incident report as part of its response.

Getting ready

You should be a global or compliance administrator to complete this recipe.

How to do it…

Go to your DLP policies directly at https://compliance.microsoft.com/datalossprevention. You could also go to the Microsoft 365 compliance center and select Show all > Data loss prevention from the left navigation menu.
Select the policy for which you're configuring an incident report, then click Edit policy:
Figure 12.11 – The Edit policy button available for a selected DLP policy
Select Policy settings > expand the content specifications > Edit rule:
Figure 12.12 – Edit rule button available for a specific rule in the selected policy...

Creating a DLP policy for content with custom keywords in the name or subject

Earlier in this chapter in the Using DLP to automatically report HIPAA Incident Reports recipe, you created a DLP policy based on pre-defined criteria (HIPAA-protected data types). In this recipe, we'll create another DLP policy, but this one will look for content that includes custom keywords we specify. Specifically, we'll be looking for content that contains any reference to our top-secret, fictional Project Wildebeest.

Getting ready

You should be a global or compliance administrator to complete this recipe.

How to do it…

Go to the Microsoft 365 compliance center at https://compliance.microsoft.com.
Choose Data classification from the left-hand navigation menu.
Choose Sensitive info types:
Figure 12.15 – The Sensitive info types button on the top navigation menu of the Data classification page
Click Create info type.
Name and describe the sensitive...

Tuning a sensitive information type's confidence level

When you're creating a DLP policy, you can use sensitive information types (such as Project Wildebeest in the previous recipe). Matches are based on specific patterns and confidence level. The higher the confidence level, the more certain the match must be whereas a lower confidence level will catch more similar matches (though these will include false positives).

You may wish for a higher confidence level when you're more absolutely certain data that should be caught follows a specific pattern each time, such as a routing number within a certain proximity of an account number or SSN. Lower confidence levels will be more inclusive of potential matches and may be helpful for more loosely structured data where, perhaps, a confidential project may be discussed or referenced in numerous ways and structures.

In this recipe, we'll adjust a sensitive information type from the previous recipe (Project Wildebeest...

Creating an eDiscovery case

Think of an eDiscovery case as a container for an investigation or search for content related to a specific inquiry. Perhaps the legal team requires access to search all content in the environment related to a user—an eDiscovery case would be a way to containerize the scope of their search and provide them access. You may also be asked to investigate a user's inbox or a specific site, placing a hold on it first with an eDiscovery case. In this recipe, we'll create an eDiscovery case to provide specific people access to review specific content related to a fictional investigation.

Getting ready

You should be a global, compliance, or eDiscovery administrator or an eDiscovery manager to complete this recipe.

How to do it…

Go to the Microsoft 365 compliance center at https://compliance.microsoft.com.
Select Show all > eDiscovery > Core from the left-hand navigation menu:
Figure 12.37 – The Core eDiscovery...

Managing eDiscovery cases

In the previous recipe, you created an eDiscovery core case and shared it with members for review. In this recipe, we'll cover a couple more things you can do when managing eDiscovery cases.

Getting ready

You should be a global, compliance, or eDiscovery administrator to complete this recipe. You could also be an eDiscovery manager if only managing cases you created or were assigned to.

How to do it…

Go to the Microsoft 365 compliance center at https://compliance.microsoft.com.
Select Show all > eDiscovery > Core from the left-hand navigation menu:
Figure 12.47 – The Core eDiscovery link on the left-hand navigation menu of the Microsoft 365 compliance center
Click Export to get a CSV file of all cases and their top-level details:
Figure 12.48 – Example CSV file of exported case details
Use the Group by, Search, and Filter buttons to quickly find and organize your cases. You might, for example, use...

Creating an advanced eDiscovery case

In the Creating an eDiscovery case recipe earlier in this chapter, you created a basic eDiscovery case. In this recipe, you'll create an advanced eDiscovery case that has a few more options and abilities.

Getting ready

You should be a global or compliance administrator to complete this recipe. eDiscovery also requires an Office 365 or Microsoft 365 E5 subscription.

How to do it…

Go to the Microsoft 365 compliance center at https://compliance.microsoft.com.
Select Show all > eDiscovery > Advanced from the left-hand navigation menu:
Figure 12.51 – The Advanced eDiscovery link on the left-hand navigation menu of the Microsoft 365 compliance center
Click Cases.
Click Create a case.
Enter a Case name, Case number (optional), and Case description for the case:
Figure 12.52 – Case basic details configuration
Change Do you want to configure additional settings after creating this case? to...

Changing who has access to an advanced eDiscovery case

In the last recipe, you created an advanced eDiscovery case. In this recipe, we'll modify an existing case to add members and role groups to have access.

Getting ready

You should be a global, compliance, or eDiscovery administrator or an eDiscovery manager to complete this recipe.

How to do it…

Go to the Microsoft 365 compliance center at https://compliance.microsoft.com.
Select Show all > eDiscovery > Advanced from the left-hand navigation menu:
Figure 12.54 – The Advanced eDiscovery link on the left-hand navigation menu of the Microsoft 365 compliance center
Click Cases.
Select the name of the case for which you're adding members or role groups to permissions.
Select Settings:
Figure 12.55 – The Settings link along the top navigation of a specific eDiscovery case
Under Access & permissions, click Select:
Figure 12.56 – The Select button under Access...

The rest of the chapter is locked

You have been reading a chapter from

Microsoft Office 365 Administration Cookbook

Published in: Sep 2020Publisher: PacktISBN-13: 9781838551230

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

undefined

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at €14.99/month. Cancel anytime

Author (1)

Nate Chamberlain

Nate Chamberlain is a technical content creator, solution architect, and trainer, recognized as a 5-year Microsoft MVP. With a background in business analysis and systems administration, Nate has authored seven books and manages his blog. He holds an array of certifications, including M365 Enterprise Administrator Expert and Microsoft Power Platform App Maker Associate, and is a frequent speaker at user groups and conferences.
Read more about Nate Chamberlain

Other recommended products

Related to this chapter

Managing Microsoft Teams: MS-700 Exam Guide

Managing Microsoft Teams: MS-700 Exam Guide offers complete, up-to-date coverage of the exam course content to help you pass with confidence. With this book, you will learn the steps of how to plan for a Microsoft Teams deployment within a business environment and manage Teams administrative functions on a day-to-day basis.

BookFeb 2021452 pages

Deploying Microsoft 365 Teamwork: Exam MS-300 Guide

This book offers complete, up-to-date coverage of the MS-300, written in a clear, succinct way with self-assessment questions, exam tips and mock exams with detailed answer explanations, this book covers configuration of SharePoint Online, OneDrive for Business, and Microsoft Teams and eventually earn the Microsoft certification.

BookJan 2020632 pages

PowerShell for Office 365

Office 365 is a powerful tool to perform common administrative tasks. But there is more that it can do. PowerShell for Office365 helps in automation of repetitive and complex administrative tasks, which can greatly increase the speed and efficiency of your business. This book will walk you through all the aspects of PowerShell and will enable you to get a greater control and extract more from Office 365.

BookJul 2017222 pages

Microsoft 365 Security Administration: MS-500 Exam Guide

MS-500: Microsoft 365 Security Administration offers complete, up-to-date coverage of the MS-500 exam so you can take it with confidence, fully equipped to pass the first time.

BookJun 2020672 pages

Mastering Office 365 Administration

Office 365 is Microsoft's cloud solution to create IT services for enterprises and academics which is way cheaper than an in house IT infrastructure. This book will teach you to implement enterprise-level services, no matter the size of your business.

BookMay 2018532 pages

Microsoft 365 Mobility and Security - Exam Guide MS-101

The MS-101 exam is part of the Microsoft 365 Certified: Enterprise Administrator Expert certification path in which users learn to evaluate, plan, migrate, deploy, and manage Microsoft 365 services. This book offers complete, up-to-date coverage of the MS-101 exam so you can take them with confidence, fully equipped to pass the first time.

BookNov 2019312 pages

Office 365 Essentials

Office 365, one of the most powerful subscription applications, is renowned for its cost-effectiveness and has a powerful range of cost-effective services. This one-stop solution will help make your organization reliable, scalable, and fast. This book will help you realize this dream easily and effectively.

BookMay 2018394 pages

Microsoft 365 Certified Fundamentals MS-900 Exam Guide

Microsoft? ?365? ?Certified? ?Fundamentals certification demonstrates your knowledge of cloud services in general and the SaaS cloud model. This MS-900 exam guide, filled with practice questions, exam patterns, and mock tests, will help help you pass the exam on the first go and get to grips with adopting core Microsoft 365 services and cloud concepts.

BookFeb 2020342 pages

Hands-On Microsoft Teams

Microsoft Teams is your entry point to the Modern Workplace. This beginner's guide is complete with hands-on tutorials and examples to teach you how to use or implement Microsoft Teams in your organization for unified communication. The book helps you to be a Microsoft Teams advocate and to improve the way people collaborate in your organization.

BookApr 2020324 pages

Microsoft 365 and SharePoint Online Cookbook

With a large collection of recipes to guide you through the Microsoft Office 365 integrated suite, this cookbook provides tools for streamlining your organizational tasks in content management. Starting with an overview of the MS 365 ecosystem, it covers the Power Platform using a step-by-step approach to make the most of the services available to you.

BookJun 2020810 pages

Office 365 User Guide

Office 365 is one of the most secure and easy-to-use apps for email exchange. To help you understand the details about office365, this book will explain you different settings of Office 365, along with its extensions such as SFB, OneDrive, Sharepoint and Team.

BookApr 2019462 pages

Deploying SharePoint Server Hybrid: Exam MS-301 Guide

The Microsoft MS-301 exam demonstrates that administrators have a firm grasp of the knowledge and skills necessary to deploy, configure, and manage SharePoint. This book will focus on the material needed to pass the MS-301 exam and understand SharePoint deployment, though not a substitute for hands-on learning and exploring the product’s features.

BookJul 2020540 pages

Personalised recommendations for you

Based on your interests and search pattern

C++ Programming for Linux Systems

This book covers the essential system programming tools and helps you explore the features of C++20. It emphasizes important details to maintain code quality and tackle everyday challenges of developing software for high performance, optimization, and more.

BookSep 2023288 pages

Expert C++

Discover advanced programming techniques, the latest features of C++17 and C++20, and best practices for memory management, debugging, testing, and large-scale application design with Expert C++. Ideal for experienced developers advancing to proficient programmers and building professional-grade C++ applications.

BookAug 2023604 pages

iOS 17 Programming for Beginners

iOS 17 Programming for Beginners, Eighth Edition is your comprehensive guide to learning the art of iOS app development. Whether you dream of creating the next chart-topping app or simply want to enhance your programming skills, this book is your trusted companion on this exciting journey.

BookOct 2023604 pages4

Developer Career Masterplan

Written by industry experts that have spent the last 20+ years helping developers grow their career path towards senior developer positions and beyond. This book provides a comprehensive guide, sharing examples and stories from their global careers. By the end, you’ll have the knowledge to create a clear career progression plan as a technical professional.

BookSep 2023310 pages

Refactoring with C#

In Refactoring with C#, you’ll explore the process of safely refactoring modern .NET code using Visual Studio features, advanced unit tests, AI assistance, and custom Roslyn analyzers.

BookNov 2023434 pages

Python Real-World Projects

Amplify your developer journey by curating a dynamic project portfolio that outshines traditional resumes. Delve into the Python realm through immersive projects, mastering core concepts while constructing comprehensive modules and applications. From data acquisition prowess to impactful data visualization, Python Real-World Projects arms you with essential skills to beat the competition.

BookSep 2023478 pages5

The MVVM Pattern in .NET MAUI

The MVVM Pattern in .NET MAUI enables developers to master MVVM principles and effectively apply them to .NET MAUI. This book uses real-life examples and covers complex problems to help you successfully apply MVVM with .NET MAUI to confidently develop robust and high-performing cross-platform apps.

BookNov 2023386 pages

Extending Microsoft Business Central with Power Platform

Extending Business Central with the Power Platform is a step-by-step guide for Business Central professionals to create solutions that automate business processes, explain complex workflow approvals, and integrate with hundreds of other systems, without traditional development. It’ll guide you in customizing Business Central with Power Platform.

BookAug 2023458 pages5

Extending Microsoft Business Central with Power Platform

Extending Business Central with the Power Platform is a step-by-step guide for Business Central professionals to create solutions that automate business processes, explain complex workflow approvals, and integrate with hundreds of other systems, without traditional development. It’ll guide you in customizing Business Central with Power Platform.

BookAug 2023458 pages5

Quantum Computing Algorithms

The book emphasizes intuitive ideas behind quantum algorithms in ways that other books don’t cover, striking a careful balance between no math and too much math. To get the most from this book, you should be comfortable with basic algebra and writing simple computer code. No prior understanding of quantum physics is needed to get started.

BookSep 2023342 pages

Python – Complete Python, Django, Data Science and ML Guide

Unlock Python's full potential with this 50+ hour course! From programming to web and game development, data manipulation, and machine learning, gain the skills required to succeed in various Python-related careers. With practical tasks, hands-on experience, and a strong foundation in Python, you'll be ready to tackle real-world challenges and take advantage of the many opportunities this versatile language offers.

VideoNov 202350 hours 30 minutes5

Python – Complete Python, Django, Data Science and ML Guide

Unlock Python's full potential with this 50+ hour course! From programming to web and game development, data manipulation, and machine learning, gain the skills required to succeed in various Python-related careers. With practical tasks, hands-on experience, and a strong foundation in Python, you'll be ready to tackle real-world challenges and take advantage of the many opportunities this versatile language offers.

VideoNov 202350 hours 30 minutes5