Description

Introduction
This training provides a focused deep dive into securing an Office 365 tenant and implementing strong compliance controls. Participants will learn how to protect identities, secure data, manage risks, and meet regulatory requirements using Microsoft 365’s built-in security and compliance capabilities.

Prerequisites
Basic understanding of Microsoft 365 administration
General knowledge of security concepts (MFA, access controls)
Familiarity with data governance or compliance fundamentals

Table of Contents

1. Security & Compliance Foundations
 1.1 Overview of Microsoft 365 Security Architecture
 1.2 Shared Responsibility Model
 1.3 Key Security & Compliance Portals
 1.4 Built-In vs Add-On Security Capabilities

2. Identity & Access Security
 2.1 Securing User Identities with MFA
 2.2 Role-Based Access Control (RBAC)
 2.3 Conditional Access Policies
 2.4 Privileged Identity Management (PIM)

3. Threat Protection & Monitoring
 3.1 Defender for Office 365 Overview
 3.2 Anti-Phishing, Anti-Spam & Safe Links
 3.3 Safe Attachments & Zero-Day Protection
 3.4 Threat Analytics & Alerts

4. Information Protection & Data Security
 4.1 Sensitivity Labels & Encryption
 4.2 Data Loss Prevention (DLP) Policies
 4.3 Information Barriers & Insider Risk Controls
 4.4 Protecting Data Across Apps (Teams, SharePoint, OneDrive)

5. Compliance Management & Governance
 5.1 Microsoft Purview Compliance Portal
 5.2 Compliance Manager & Compliance Score
 5.3 Regulatory Templates & Standards Mapping
 5.4 Data Residency, Sovereignty & Legal Requirements

6. Audit, Logging & Risk Management
 6.1 Unified Audit Log Configuration
 6.2 eDiscovery (Standard & Premium)
 6.3 Risk Assessments & Alerts
 6.4 Insider Risk Management & Activity Monitoring

7. Data Lifecycle & Records Management
 7.1 Retention Labels & Retention Policies
 7.2 Records Management Essentials
 7.3 Data Lifecycle Automation
 7.4 Managing Dispositions & Compliance Reports

8. Governance Best Practices & Security Hardening
 8.1 Hardening Access, Authentication & Admin Accounts
 8.2 Zero Trust Framework for Office 365
 8.3 Security Baselines & Configuration Policies
 8.4 Governance Model for Continuous Compliance

This training equips participants with the knowledge to secure Office 365 environments, implement compliance controls, and proactively manage risks. With these capabilities, administrators can confidently safeguard their organization’s data and meet regulatory obligations.