welcome Siberians to the M s 3 65 Security Administration course. I'm your structure, Jim Daniels.
We're a model for industry C C. Five in fact Protection Lesson three
Data loss prevention,
Part one. Data loss prevention
In this lesson, we're going to go over you guess it. Data loss prevention.
How sensitive information Times are determined and DLP policy usage,
data loss prevention, GOP and a mystery 65 Identifies Monitors reports and protect sensitive data like Social Security credit card information. Bank information through deep content analysis. Were helping users understand and manage data risk
deal peaking and be configured to identify sensitive information.
Because, frankly, if it couldn't it will be worthless. It wouldn't be Deal t will be something totally different.
identifies sensitive information.
GOP policies protect content by enforcing rules comprised of conditions and actions. If this, then that
policies are typically based
when 10 place provided in the DLP service.
A sensitive information type is defined by a pattern that can be identified by regular expression or function.
Think of a Social Security number three numbers dashed to numbers. Dash four numbers.
Their credit card information
drivers license the state has her own format.
Data loss prevention in M s 3 65 includes definitions for many common sensitive information types.
Each information type is defined in detected by using a combination off
keywords, internal functions that validate check sums and composition,
evaluations of expressions to find pattern matches and other content examination.
Here's an example of some of this sensitive info types
we're going to secure and compliant center. Go to classification.
There's a whole slew have sense of information times from individual countries,
for instance, U S bank account driver's license,
tax identifications of security information,
dozens and dozens of pre defying, sensitive information types.
So you don't have to give in and create the will
and define what a security number is.
You don't have to go in until Microsoft
what a driver's license. A loose life in the state of Alabama.
and they add to this. So as new information comes out
type information comes out, they into it. They add one toe. That's part of the advantage of the Microsoft cloud.
After creating a GOP policy,
you can activate those policies to examine different locations, so you can run that policy against exchange. Email. SharePoint one drive
SharePoint Remember, includes one draft teams.
You can find groups, all of that.
You can also create a deal P policy and choose non activated. But running in test mode
to monitor and auto deal P policies there to pre defined reports available, showed a DLP matches
and false positive and overrides
conditions and actions. If this condition action did that,
conditions focused not only on the content,
such as what type of information you're looking for, but else in the context.
So just who is shared with
conditions can determine if the content contains any of the 80 plus build in sensitive information. Times.
Continents share what people outside or inside your organization
as the document properties containing specific values. Content masters a condition In a rule,
conditions. Match action comes in. You perform actions such as blocking access to the content.
We're sitting in a notification
when you create a deal P policy
in configure a user notification to form users and educate them. Win. They're in violation of the policy.
You just be notified through email on policy tips.
This is recommended strategy organizations that are trying
to get a GOP policy started.
If you have zero data classification and your users or uses just sending whatever
help them understand,
the policies helped him.
That's what this does.
Don't bring the hammer down immediately
because it would just cause frustration, chaos and your services will literally want to kill you.
Documentations Key that goes for your service desk as well as your in users?
If in users have been doing something for 20 years and all of a sudden they can't, there's no explanation or documentation as to why they can't
during me pretty pissed off,
So don't be that person who causes the whole organization to be in upheaval
over being overzealous
with the security policy.
it's that balance you want to get there, but there's a right way to get there.
Policy Tip is a notification or warning
that appears when someone is working with content that conflicts with the deal. Be policy.
You can be Internet email
sites, and in 2016 and beyond APS.
I already settled Power point right here. We have an example of that look
where says it contains sensitive content, credit card number
you can report this message doesn't contain sensitive content. Report that goes into the false positive reports that we touched on a few salons ago.
sensitive information types or define and detected by format
keywords, internal functions,
An evaluation of regular expressions.
Your second to read that comic
well as determined. Your answer.
And the answer is true. Yes,
that is how it is defined
policy templates. The quickest way to start using the Opie policies and Demonstrate 65 is to create a new policy for my template.
Templates are supposed to make things easy.
A pre configure deal P Policies in play can help you detect specific types of sensitive information.
Three methods exists for you to begin creating Deal P policies by using the security compliance center
out of the box template from Microsoft. The easiest and quickest way to get going
pre existing custom policy with pre existing conditions
custom policy without preexisting conditions. Maybe you need to create a sense of information type
that isn't included in the 80 plus pre defined ones. You can do that
so you have this possibility and creating a deal P policy.
D, L, p and M s. 3 65 identifies monitors reports and protect sensitive data through deep content analysis
by helping users understand and manage data risk.
Helps users understand
the toe tip. The justification mechanisms. All of this helps users understand what you as security compliance are trying to accomplish.
GOP policies protect content by enforcing rules comprised of conditions and actions.
If it means that this condition this action occurs,
conditions focused not only on the content,
such as type of sensitive information you're looking for, but also in context, since there's who the document is sure with
a policy tip is a notification or warning that appears when someone is working with content that conflicts with a GOP policy.
Thank you for joining me in this lesson.
I hope to see you for the next one. Take care