Skip to content
Featured ~ sfennah
SC-400 or Microsoft Information Protection Administrator is one of the security & compliance certifications and is aimed at information protection roles. Although the SC series cover the wider Microsoft Cloud (azure, Microsoft 365, Power Platform and Dynamics 365) this course and exam is primarily focused on Microsoft 365.
As an Information Protection Administrator you need an understanding of where Microsoft 365 stores its data, so a bit of Exchange, SharePoint and Teams knowledge is helpful though not essential.
You MUST be familiar with the security features available in the Microsoft cloud and therefore you would be well served to also attend the MS-900 or SC-900 courses, pass the exams and/or review extras pages for these before taking the SC-400 exam.
Disclaimer: All these links were correct at the time of posting. But the Cloud changes regularly, so the referenced articles my change/be removed. Please do post a comment if you spot a broken link or have suggestions to add so others can benefit too.
- SC-400 Exam page https://docs.microsoft.com/learn/certifications/exams/sc-400?WT.mc_id=M365-MVP-5004583
- MeasureUp Official Practice Test Official Practice Test SC-400: Microsoft Information Protection Administrator (measureup.com)
- Microsoft Learn. Provides searchable learning paths and modules for a variety of roles and levels. https://docs.microsoft.com/learn/?WT.mc_id=M365-MVP-5004583
- Learn TV. Digital content so you can always keep updated on the latest announcements, features, and products from Microsoft. https://docs.microsoft.com/learn/tv/?WT.mc_id=M365-MVP-5004583
- Microsoft Security, Compliance & Identity Blog Security, Compliance, and Identity – Microsoft Tech Community
- Channel 9. Informational videos, shows, and events on variety of technical topics. https://channel9.msdn.com/
- Microsoft Learning Community Blog. Get the latest information about the certification tests and exam study groups. https://www.microsoft.com/en-us/learning/community-blog.aspx
- Microsoft 365 Documentation https://docs.microsoft.com/en-us/microsoft-365
- Portals for Administrators https://msportals.xyz/
There are a number of blogs about taking MCP exams. My personal favourites are:
- Certification process overview | Microsoft Docs
- Microsoft Certification Routes https://query.prod.cms.rt.microsoft.com/cms/api/am/binary/RWtQJJ?keywords=Microsoft%20365%20Certified%20Teamwork%20Administrator%20Associate
- Microsoft Certifications – Microsoft Exam duration and question types – tiagocosta.com
- An MCT’s perspective on taking a Microsoft Fundamentals Exam (FAQ’s) – @Microsoft365Pro
- How to take a Microsoft Certification Exam Online – Thomas Maurer
Before attending an SC-400 course you should have a good understanding of what Microsoft 365 is and the features it includes. These resources can help.
- My MS-900 Extras Page https://m365train.co.uk/2021/08/15/ms-900-course-extras
- My SC-900 Extras Page SC-900 Extras – Sara Fennah’s Blog (m365train.co.uk)
- Microsoft 365 licensing guidance for security & compliance https://docs.microsoft.com/en-us/office365/servicedescriptions/microsoft-365-service-descriptions/microsoft-365-tenantlevel-services-licensing-guidance/microsoft-365-security-compliance-licensing-guidance#information-barriers
- License Comparisons https://github.com/AaronDinnage/Licensing
- Service Trust Portal https://servicetrust.microsoft.com/
- An Introduction to PowerShell Introduction to PowerShell – Learn | Microsoft Docs
- M365 Compliance Documentation will provide overview of each area and be a great resource for further study and implementation.
- Implement Information Protection in Mcirosoft 365 https://docs.microsoft.com/en-us/learn/paths/implement-information-protection/
- Implement Data Loss Prevention https://docs.microsoft.com/en-us/learn/paths/implement-data-loss-prevention/
- Implement Information Governance in Microsoft 365 https://docs.microsoft.com/en-us/learn/paths/implement-information-governance/
Based on exam Objective from July 23, 2021
Implement Information Protection (35-40%)
Create and manage sensitive information types
- select a sensitive information type based on an organization’s requirements
- create and manage custom sensitive information types
- create custom sensitive information types with exact data match
- implement document fingerprinting
- create a keyword dictionary
Create and manage trainable classifiers
- identify when to use trainable classifiers
- create a trainable classifier
- verify a trainable classifier is performing properly
- retrain a classifier
Implement and manage sensitivity labels
- identify roles and permissions for administering sensitivity labels
- create sensitivity labels
- configure and manage sensitivity label policies
- apply sensitivity labels to Microsoft Teams, Microsoft 365 groups, and SharePoint sites
- configure and publish automatic labeling policies (excluding MCAS scenarios)
- monitor data classification and label usage by using label analytics tools such as content explorer and activity explorer
- https://docs.microsoft.com/microsoft-365/compliance/data-classification-content-explorer?view=o365-worldwide&WT.mc_id=M365-MVP-5004583
- https://docs.microsoft.com/microsoft-365/compliance/data-classification-activity-explorer?view=o365-worldwide&WT.mc_id=M365-MVP-5004583
- https://docs.microsoft.com/microsoft-365/compliance/data-classification-activity-explorer-available-events?view=o365-worldwide&WT.mc_id=M365-MVP-5004583
- apply bulk classification to on-premises data by using the AIP unified labelling scanner
- manage protection settings and marking for applied sensitivity labels
- apply protections and restrictions to email including content marking, usage, permission, encryption, expiration, etc.
- apply protections and restrictions to files including content marking, usage, permission encryption, expiration, etc
Plan and implement encryption for email messages
- define requirements for implementing Office 365 Message Encryption
- implement Office 365 Advanced Message Encryption
- https://docs.microsoft.com/office365/servicedescriptions/exchange-online-service-description/message-policy-and-compliance?WT.mc_id=M365-MVP-5004583#office-365-message-encryption
- https://docs.microsoft.com/microsoft-365/compliance/ome-advanced-message-encryption?view=o365-worldwide&WT.mc_id=M365-MVP-5004583
Blogs, Videos & Demos:
- Information Protection in Microsoft 365 https://youtu.be/UI0p9xqMNfI?list=PLXtHYVsvn_b8dbRbnL19GUPcBH1UQ7c4x
- Demonstration: Sensitive information types https://www.microsoft.com/videoplayer/embed/RE4yqxc
- Demonstration: Trainable classifiers https://www.microsoft.com/videoplayer/embed/RE4yg7t
- Demonstration: Data classification features in the Compliance center https://www.microsoft.com/videoplayer/embed/RE4vx8x
- Protect Sensitive Data https://aka.ms/AAbfsel
- Office 365 Encryption explained https://www.microsoft.com/videoplayer/embed/RE4ynVf
- Demonstration: Office 365 Data at Rest encryption https://www.microsoft.com/videoplayer/embed/RE4yvH4
- Office 365 Essentials: Office Message Encryption https://www.youtube.com/watch?v=CQR0cG_iEUc&t=13s
- Microsoft Information Protection in SharePoint, OneDrive, and Teams. Part 1: Overview https://www.youtube.com/watch?v=QDbOkIrt1S4
- Discover and protect your on-premises data using Microsoft Information Protection https://www.youtube.com/watch?v=D8kyAlbstws
Implement Data Loss Prevention (30-35%)
Create and configure data loss prevention policies
- recommend a data loss prevention solution for an organization
- configure data loss prevention for policy precedence
- configure policies for Microsoft Exchange email
- configure policies for Microsoft SharePoint sites
- configure policies for Microsoft OneDrive accounts
- configure policies for Microsoft Teams chat and channel messages
- integrate Microsoft Cloud App Security (MCAS) with Microsoft Information Protection
- configure policies in Microsoft Cloud App Security (MCAS)
- implement data loss prevention policies in test mode
Implement and monitor Microsoft Endpoint data loss prevention
- configure policies for endpoints
- configure Endpoint data loss prevention settings
- recommend configurations that enable devices for Endpoint data loss prevention policies
- monitor endpoint activities
Manage and monitor data loss prevention policies and activities
- manage and respond to data loss prevention policy violations
- review and analyze data loss prevention reports
- manage permissions for data loss prevention reports
- manage data loss prevention violations in Microsoft Cloud App Security (MCAS)
Blogs, Videos & Demos:
- Understanding and maximizing the value of Microsoft’s DLP Approach https://www.youtube.com/watch?v=aI3OYUNhKnw
- DLP Policies for Teams Guided demo: https://teams-dlp-interactive-guide.azureedge.net/
- Endpoint Data Loss Prevention (DLP) – What it is and how to set it up in Microsoft 365 https://www.youtube.com/watch?v=XO2zMA3w1wA
- Endpoint DLP Guided demo: https://ms-endpoint-dlp.azureedge.net/
Implement Information Governance (25-30%)
Configure retention policies and labels
- create and apply retention labels
- create and apply retention label policies
- configure and publish auto-apply label policies
Manage data retention in Microsoft 365
- create and apply retention policies in Microsoft SharePoint and OneDrive
- create and apply retention policies in Microsoft Teams
- recover content in Microsoft Teams, SharePoint, and OneDrive
- recover content in Microsoft Exchange
- implement retention policies and tags in Microsoft Exchange
- apply mailbox holds in Microsoft Exchange
- implement Microsoft Exchange Online archiving policies
Implement records management in Microsoft 365
- configure labels for records management
- manage and migrate retention requirements with a file plan
- configure automatic retention using File Plan descriptors
- classify records using retention labels and policies
- implement in-place records management in Microsoft SharePoint
- configure event-based retention
- manage disposition of records
Blogs, Videos & Demos:
- Demonstration – Records management https://youtu.be/CAUDKL4FyQ8
- Demonstration – Event driven retention https://youtu.be/jSV2vKh0xNg
- Principles of Retention | A Fun Compliance Challenge – Joanne C Klein
- Event-driven retention in Office 365. A walk-thru. – Joanne C Klein