Tag - Security & Compliance Center

Teams, SharePoint and OneDrive best practices? Part 2: Access control and notifications

In part 1 of this series we discussed how there is really no such thing as "best practices" on a rich and flexible collaboration platform like Office 365, which includes many applications--Teams, SharePoint and OneDrive to name just a...
Read more...

How to use DLP to automatically file HIPAA incident reports in Microsoft 365

I have previously written about Data Loss Prevention (DLP) on this site, and today I am going to demonstrate another important use of this technology in helping to meet certain compliance requirements for HIPAA.* You can also apply this process to other sensitive information types, where incident reports are recommended,...
Read more...

Configure alerts for your 365 Tenant from the Security & Compliance Center

If you have an Office 365 or Microsoft 365 subscription, then you should check out the Security & Compliance Center--there are plenty of tools in here to help you step up your game. Generally speaking, nothing is really configured by default, so if you want to be...
Read more...

12 Steps you can take to up your Office 365 Security & Compliance game

I don't mean to oversimplify things here. This is not a comprehensive guide or anything like that. Every organization has different goals and business objectives, and depending on your industry, etc., you could have very different compliance regulations or whatever, that you need to consider. My goal is just to...
Read more...

Using Security & Compliance Center to manage retention policies

Today I want to discuss retention policies, which can be administered via the Security & Compliance admin center in Microsoft 365 / Office 365. Retention policies exist to protect and/or purge (delete) certain types of information. Some organizations have very strict archive and retention policies that they must maintain data...
Read more...

Enable the Archive Mailbox and modify the default retention policy (for cloud-only and hybrid users)

In any subscription that includes Exchange Online Archiving, such as Office 365 E3 or Microsoft 365 Business (as well as any subscription to which the Archiving add-on is applied), it is possible to enable an unlimited storage container for those hoarders out there, known as an archive mailbox. I'm looking...
Read more...

Configuring Data Loss Prevention (DLP): An example automatically encrypting GLBA content via Email

If you have a subscription such as Microsoft 365 Business or Office 365 E3, then you can configure Data Loss Prevention (DLP) policies, which are great tools for helping your organization meet compliance standards. I especially recommend it for businesses in the financial or medical industries, due...
Read more...

How to quickly provision Microsoft 365 Business subscriptions for Exchange Online and ATP using PowerShell

Hey folks, Microsoft 365 Business is a really cool subscription for small businesses, and if you are doing these configurations for a lot of tenants, then you're probably going to want to automate some of the setup.  Today I'm going to share a script I use to...
Read more...

How to configure Advanced Threat Protection (ATP) part 3: safe links

This will be our last post in this series on Advanced Threat Protection (ATP). We have previously covered anti-phishing policies and safe attachments. Now we will consider safe links. Safe links are basically just taking hyperlinks which exist in Exchange email messages or other content...
Read more...

Helping IT Consultants Succeed in the Microsoft Cloud

Have a Question? Contact me today.