Protect Sensitive Data with Microsoft Purview

The SC-401 is the certification for anyone responsible for protecting sensitive data across Microsoft 365 and Azure. This course covers the full Microsoft Purview stack — sensitivity labels, data loss prevention, retention policies, records management, insider risk, and compliance controls. You will configure each of these in the Purview portal with real policy examples.

Data protection is not optional anymore. Regulations like GDPR, HIPAA, and industry-specific requirements demand that you know where your sensitive data lives, who can access it, and what happens when it leaves your organization. This course teaches you to build those controls using Microsoft Purview, not as theoretical concepts but as deployable configurations you can implement the same day.

Every module follows the SC-401 exam objectives and includes step-by-step portal demonstrations. You will create sensitivity labels with auto-labeling, build DLP policies that span Exchange, SharePoint, Teams, and endpoint devices, and configure insider risk policies that detect anomalous behavior before data exfiltration happens.

Curriculum

Sensitivity Labels and Information Protection

• Creating and publishing sensitivity labels
• Auto-labeling policies for documents and emails
• Azure Information Protection unified labeling
• Label analytics and monitoring adoption

Data Loss Prevention

• DLP policy creation for Exchange, SharePoint, and Teams
• Endpoint DLP for Windows and macOS devices
• Custom sensitive information types and trainable classifiers
• DLP alerts, incident management, and tuning

Data Lifecycle and Records Management

• Retention policies and retention labels
• Records management and regulatory records
• Disposition reviews and proof of disposal
• File plan management and label automation

Insider Risk and Compliance

• Insider risk management policies and indicators
• Communication compliance for Teams and email
• Information barriers and ethical walls
• Compliance Manager scores and improvement actions

Who Is This For

This course is built for compliance administrators, security engineers, and Microsoft 365 administrators who need to implement data protection controls. If your organization handles regulated data — financial records, health information, personal data under GDPR — and you use Microsoft 365, the SC-401 validates that you can configure the tools that protect it. Prior experience with Microsoft 365 administration is recommended.