13Aug2019
27Dec2018
How to use DLP to automatically file HIPAA incident reports in Microsoft 365
I have previously written about Data Loss Prevention (DLP) on this site, and today I am going to demonstrate another important use of this technology in helping to meet certain compliance requirements for HIPAA.* You can also apply this process to other sensitive information types, where incident reports are recommended,...
07Nov2018
Configure alerts for your 365 Tenant from the Security & Compliance Center
If you have an Office 365 or Microsoft 365 subscription, then you should check out the Security & Compliance Center--there are plenty of tools in here to help you step up your game. Generally speaking, nothing is really configured by default, so if you want to be secure or compliant,...
25Oct2018
12 Steps you can take to up your Office 365 Security & Compliance game
I don't mean to oversimplify things here. This is not a comprehensive guide or anything like that. Every organization has different goals and business objectives, and depending on your industry, etc., you could have very different compliance regulations or whatever, that you need to consider. My goal is just to...
24Sep2018
Using Security & Compliance Center to manage retention policies
Today I want to discuss retention policies, which can be administered via the Security & Compliance admin center in Microsoft 365 / Office 365. Retention policies exist to protect and/or purge (delete) certain types of information. Some organizations have very strict archive and retention policies that they must maintain data...
20Sep2018
How to enable auditing in Exchange Online
Microsoft 365 has a powerful Security & Compliance center that is becoming cooler every quarter that goes by. However, one rather important piece to understand is that auditing (logging of certain activities) is not turned on by default. They are in the process of updating this to be on by...
17Sep2018
Enable the Archive Mailbox and modify the default retention policy (for cloud-only and hybrid users)
In any subscription that includes Exchange Online Archiving, such as Office 365 E3 or Microsoft 365 Business (as well as any subscription to which the Archiving add-on is applied), it is possible to enable an unlimited storage container for those hoarders out there, known as an archive mailbox. I'm looking...
13Sep2018
Configuring Data Loss Prevention (DLP): An example automatically encrypting GLBA content via Email
If you have a subscription such as Microsoft 365 Business or Office 365 E3, then you can configure Data Loss Prevention (DLP) policies, which are great tools for helping your organization meet compliance standards. I especially recommend it for businesses in the financial or medical industries, due to laws and...
10Sep2018
How to quickly provision Microsoft 365 Business subscriptions for Exchange Online and ATP using PowerShell
Hey folks, Microsoft 365 Business is a really cool subscription for small businesses, and if you are doing these configurations for a lot of tenants, then you're probably going to want to automate some of the setup. Today I'm going to share a script I use to quickly configure my...
27Aug2018