وبلاگ بلیان

رعایت Microsoft 365: راهنمای عملی مدیریت ریسک

Microsoft 365 Compliance : A Practical Guide to Managing Risk

معرفی کتاب «رعایت Microsoft 365: راهنمای عملی مدیریت ریسک» (با عنوان لاتین Microsoft 365 Compliance : A Practical Guide to Managing Risk) نوشتهٔ Erica Toelle (auth.)، منتشرشده توسط نشر Apress : Imprint: Apress در سال 2021. این کتاب در فرمت pdf، زبان انگلیسی ارائه شده است.

Use the information presented in this book to implement an end-to-end compliance program in your organization using Microsoft 365 tools. You will learn about the solutions available in the Microsoft 365 Compliance Center, including best practices and common pitfalls. IT professionals will benefit from the author's approach of introducing each topic within a practical business context and scenarios behind the "whys" of compliance. Compliance managers will understand how to implement their requirements in Microsoft 365. Compliance and risk management is often a board- or CEO-level issue. The risks of hefty fines and bad PR from non-compliance are severe. IT is usually responsible for implementing compliance controls and for working with compliance and legal officers to manage the day-to-day risk in an organization. After reading Microsoft 365 Compliance, you will be prepared to have a well-informed conversation with your compliance and legal officers to determine how to work together to identify specific compliance requirements for your organization. You will be able to implement those requirements yourself using Microsoft 365 features. Compliance and legal officers will understand how to communicate their technical requirements to IT. Author Erica Toelle helps you build a solid compliance foundation by teaching you about topics such as information protection, retention, records management, eDiscovery, auditing, compliance with common regulations, managing insider risks, supervising communications, data loss prevention, protecting sensitive information, and using machine learning to reduce compliance costs. What You Will Learn Understand typical business scenarios and requirements for a Microsoft 365 compliance program Fulfill these compliance scenarios and requirements using out of the box Microsoft 365 solutions and functionality Ensure that your Microsoft 365 implementation meets standard compliance regulations, such as GDPR and ISO/IEC 27001:2013 Enlist best practices and things to know when implementing Microsoft 365 solutions Comprehend required Microsoft licensing and how to implement a least permissions model for each compliance solution Explore what you can accomplish using the compliance center user interface, without custom scripting or code This book is for IT professionals, security managers, compliance officers, risk managers, internal audit, records managers, CIOs, and anyone who would like to learn more about Microsoft 365 compliance. Erica Toelle is a Microsoft MVP in Office Apps and Services. She is an internationally recognized speaker on compliance, Office 365, and SharePoint. Erica has been working with customers to deploy these solutions since 2004 and has been hired as an expert by more than 75 Fortune 500 companies and several Microsoft product teams. Erica is a top 15 International SharePoint Influencer from 2016-present Table of Contents About the Author About the Technical Reviewer Acknowledgments Introduction Chapter 1: An Introduction to Compliance in Microsoft 365 Microsoft Compliance Pillars Compliance Manager Information Protection and Governance Insider Risk Management Discover and Respond Microsoft 365 Compliance Licensing The Compliance Center Compliance Permissions Roles Default Role Groups Where Microsoft 365 Stores Content Chapter 2: Compliance Manager An Overview of Compliance Manager Permissions and Licensing How to Use Compliance Manager How Microsoft Calculates the Compliance Score Continuous Assessment of Controls Improvement Actions Solutions Assessments Assessment Details Create a Custom Assessment The Service Trust Portal Chapter 3: Data Classification Trainable Classifiers Licensing and Permissions How to Use Trainable Classifiers Pre-built Classifiers Create a Custom Classifier The Seed Content Process The Test Content Process Sensitive Information Types Licensing and Permissions How Is a Sensitive Information Type Structured? What Are Pre-built Sensitive Information Types? Create a Custom Sensitive Information Type Create a Sensitive Information Type Using the Compliance Center Customize a Built-In Sensitive Information Type Use PowerShell to Create a Custom Sensitive Information Type Use Exact Data Match–Based Classification Create a Custom Keyword Dictionary Content and Activity Explorers How to Use Content Explorer Licensing and Permissions View Content Locations and Export a List View the Content and Metadata of a Document How to Use Activity Explorer Licensing and Permissions Work with Activity Explorer Data Chapter 4: Data Connectors Permissions and Licensing How to Use Compliance Connectors HR Data Connector Set Up the HR Connector Create a CSV File to Map the HR Connector Data Create an Azure Active Directory App Registration Create the HR Connector in the Compliance Center Build a Solution to Sync Your HR System Data with the CSV File Create a Scheduled Task to Sync the CSV File with the Connector Regularly LinkedIn Connector Set Up the LinkedIn Connector Administrator Access to the LinkedIn Company Page Create the LinkedIn Data Connector Chapter 5: Information Protection Sensitivity Labels Licensing and Permissions Create a Sensitivity Label How Encryption Works Assign Permissions Now Let Users Assign Permissions When They Apply the Label Content Marking Auto-label Office Documents Sensitivity Label Priority Modifying and Deleting Sensitivity Labels Sensitivity Label Policies How to Create Sensitivity Label Policies Auto-labeling Policies for SharePoint, OneDrive, and Exchange How to Use Auto-labeling Label Policy Simulator How to Use the Label Policy Simulator Use Sensitivity Labels with Containers How to Use Sensitivity Labels on Containers Install Azure AD Preview Configure Azure AD Group Settings Enable MIP Labels in Azure AD Synchronize Your Sensitivity Labels to Azure AD New Features for Using Sensitivity Labels for Containers Store Documents with Sensitivity Labels in SharePoint and OneDrive Changing Labels for Documents in SharePoint and OneDrive Chapter 6: Data Loss Prevention Policies Permissions and Licensing Contents of a DLP Policy Create a New DLP Policy Using a Microsoft 365 Template DLP Policy Advanced Settings Edit a DLP Policy Alerts DLP Reports Endpoint DLP Document Fingerprinting How Does Document Fingerprinting Work? Chapter 7: Information Barriers Why Use Information Barriers? Licensing and Permissions Information Barriers in Microsoft Teams Information Barriers in SharePoint SharePoint Behavior When Modifying Information Barriers Information Barriers in OneDrive How OneDrive Segments Work How to Set Up Information Barriers Microsoft Teams Scoped Directory Search Create User Segments Chapter 8: Information Governance An Introduction to Retention and Deletion Policies What Are Retention Policies? Licensing and Permissions Create a Retention Policy Retention Policies with Preservation Lock Edit or Delete a Retention Policy Inactive Mailboxes Retention Labels Licensing and Permissions Create a Retention Label Publish a Retention Label Manually Apply a Retention Label Preservation Lock How Retention Works in Microsoft 365 The Principles of Retention Policies How Deletion Works How to Import Content into Microsoft 365 Permissions and Licensing Use Network Upload Drive Shipping Archive Mailboxes and Unlimited Archive Licensing and Permissions Enable Archive Mailboxes Unlimited Archiving Access the Unlimited Archive Enable Unlimited Archiving Chapter 9: Records Management What Is Records Management? Microsoft 365 Records Management Permissions and Licensing Record and Regulatory Record Labels Regulatory Record Labels Records Versioning File Plan Manager Automatically Classify Content for Retention Auto-apply in a SharePoint Document Library Auto-apply a Retention Label Policy Sensitive Information Types Keywords or Properties Trainable Classifiers Auto-apply Using SharePoint Syntex Event-Based Retention How to Configure Event-Based Retention How to Automate Event-Based Retention Retention Disposition Chapter 10: Insider Risk Management What Is Insider Risk Management? Licensing and Permissions How Insider Risk Management Works Global Settings Notice Templates Policies Alerts Cases Users Chapter 11: Communication Compliance What Is Communication Compliance? Communication Channels Monitored Communication Compliance Licensing and Permissions An Overview of the Communication Compliance Solution Create a Communication Compliance Policy Intelligent Policy Templates Monitor for Offensive Language Monitor for Sensitive Information Monitor for Regulatory Compliance Create a Custom Communication Compliance Policy Add Supervised Users, Excluded Users, and Reviewers to a Policy Choose Locations to Monitor in the Policy Choose Conditions and Review Percentage Review Potential Policy Violations Review Actions Resolved Items View Reports Chapter 12: Content Search Licensing and Permissions Create a Content Search Search Keywords and Conditions Search Locations Create a Guided Search Search by ID List View Search Results Export Search Results View Export Files Unindexed or Partially Indexed Items Chapter 13: Core eDiscovery Licensing and Permissions Create a Case Place Custodians and Locations on Hold Search for Case Content Export Core eDiscovery Data Export Results Chapter 14: Advanced eDiscovery The Litigation Process What Is eDiscovery? The Electronic Discovery Reference Model Licensing and Permissions Create an Advanced eDiscovery Case Case Settings Manage Custodians and Holds Add Custodians to the Case Custodian Hold Details Add Custodians in Bulk Put Data Locations on Hold Create a Query-Based Hold Additional Hold Details Custodian Communications Set Up Custodian Communications Processing and Error Remediation Bulk Remediation Single File Error Remediation Jobs Advanced eDiscovery Searches How to Run a Search Search Statistics Manage Review Sets Create a Review Set Review Set Settings How to Add Non–Office 365 Data into a Case Reviewing Data in a Review Set Query and Filter Data in a Review Set Relevancy The Relevancy Process Prepare Train and Apply Validate and Test Export Review the Export Files Chapter 15: Data Investigations Permissions and Licensing Data Investigations Overview Settings Identify People of Interest Processing Search for Incident Data Jobs Collect and Keep Evidence Delete Items from Their Original Locations Export Data Related to the Incident Chapter 16: The Unified Audit Log Permissions and Licensing When Do Events Appear in the Audit Log? Search the Audit Log Audit Log Search Results Search Results Information Transform the AuditData Column PowerShell and Office 365 Management Activity APIs Advanced Audit Audit Log Retention Policies How to Create an Audit Log Retention Policy Access to Crucial Events for Investigations High-Bandwidth Access to the Office 365 Management Activity API Index
دانلود کتاب رعایت Microsoft 365: راهنمای عملی مدیریت ریسک