13Aug
27Dec
How to use DLP to automatically file HIPAA incident reports in Microsoft 365
I have previously written about Data Loss Prevention (DLP) on this site, and today I am going to demonstrate another important use of this technology in helping to meet certain compliance requirements for HIPAA.* You can also apply this process to other sensitive information types, where incident reports are recommended,...
07Nov
Configure alerts for your 365 Tenant from the Security & Compliance Center
If you have an Office 365 or Microsoft 365 subscription, then you should check out the Security & Compliance Center--there are plenty of tools in here to help you step up your game. Generally speaking, nothing is really configured by default, so if you want to be secure or compliant,...
25Oct
12 Steps you can take to up your Office 365 Security & Compliance game
I don't mean to oversimplify things here. This is not a comprehensive guide or anything like that. Every organization has different goals and business objectives, and depending on your industry, etc., you could have very different compliance regulations or whatever, that you need to consider. My goal is just to...
24Sep
Using Security & Compliance Center to manage retention policies
Today I want to discuss retention policies, which can be administered via the Security & Compliance admin center in Microsoft 365 / Office 365. Retention policies exist to protect and/or purge (delete) certain types of information. Some organizations have very strict archive and retention policies that they must maintain data...
20Sep
How to enable auditing in Exchange Online
Microsoft 365 has a powerful Security & Compliance center that is becoming cooler every quarter that goes by. However, one rather important piece to understand is that auditing (logging of certain activities) is not turned on by default. They are in the process of updating this to be on by...
17Sep
Enable the Archive Mailbox and modify the default retention policy (for cloud-only and hybrid users)
In any subscription that includes Exchange Online Archiving, such as Office 365 E3 or Microsoft 365 Business (as well as any subscription to which the Archiving add-on is applied), it is possible to enable an unlimited storage container for those hoarders out there, known as an archive mailbox. I'm looking...
13Sep
Configuring Data Loss Prevention (DLP): An example automatically encrypting GLBA content via Email
If you have a subscription such as Microsoft 365 Business or Office 365 E3, then you can configure Data Loss Prevention (DLP) policies, which are great tools for helping your organization meet compliance standards. I especially recommend it for businesses in the financial or medical industries, due to laws and...
10Sep
How to quickly provision Microsoft 365 Business subscriptions for Exchange Online and ATP using PowerShell
Hey folks, Microsoft 365 Business is a really cool subscription for small businesses, and if you are doing these configurations for a lot of tenants, then you're probably going to want to automate some of the setup. Today I'm going to share a script I use to quickly configure my...
27Aug