Overview

The Information Security Administrator course equips you with the skills needed to plan and implement information security for sensitive data using Microsoft Purview and related services. The course covers essential topics such as information protection, data loss prevention (DLP), retention, and insider risk management. 

What Participants Learn

• Implement and manage data classification and sensitivity labels
• Design and configure Data Loss Prevention (DLP) policies across Microsoft 365, Windows, Exchange, SharePoint, and file shares
• Implement retention policies and manage data lifecycle
• Configure Insider Risk Management and Audit policies
• Protect sensitive data used by AI services
• Investigate alerts, respond to security incidents, and manage insider risk cases
• Perform hands-on labs such as creating DLP policies, retention labels, and sensitive info types

Target Audience

Ideal for:

• IT administrators
• Security specialists
• Compliance and risk professionals
• Anyone responsible for securing and governing data in a Microsoft 365 environment

Course Outline

1. Implement Information Protection

• Configure sensitivity labels and label policies
• Classify and protect data using Microsoft Purview Information Protection
• Apply encryption and content marking
• Monitor and analyze label usage

2. Implement Data Loss Prevention (DLP)

• Identify sensitive information types
• Create and tune DLP policies for Microsoft 365, endpoints, and cloud apps
• Configure policy tips, alerts, and incident management
• Monitor DLP activity and optimize rules

3. Implement Data Lifecycle & Records Management

• Configure retention labels and retention policies
• Automate lifecycle management for structured and unstructured data
• Manage records, legal holds, and disposition reviews
• Use Purview tools for auditing and governance

4. Implement Insider Risk Management

• Configure insider risk policies and indicators
• Manage alerts, cases, and investigations
• Use communication compliance to detect risky behavior
• Apply privacy and role‑based access controls

5. Implement eDiscovery and Audit

• Configure eDiscovery (Standard & Premium)
• Manage custodians, collections, and review sets
• Use advanced auditing features
• Generate reports and maintain compliance documentation

You need basic Microsoft 365 admin knowledge, general IT security understanding, and familiarity with identity and compliance concepts — the course teaches the rest.

The course prepares candidates for the certification:
Microsoft Certified: Information Security Administrator Associate

Preparation includes:

• Hands-on lab exercises
• Practice tests
• Real-world security and compliance scenarios