SC-900 Describe the capabilities of Microsoft compliance solutions • Complete Question Bank
Complete SC-900 Describe the capabilities of Microsoft compliance solutions question bank — all 0 questions with answers and detailed explanations.
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag a concept onto its matching description — or click a concept then click the description.
Warning signs or security policies
Firewall rules blocking unauthorized access
Intrusion detection system alerts
Patching a vulnerability after discovery
Requiring strong passwords via policy
Drag a concept onto its matching description — or click a concept then click the description.
Data protection and privacy for EU citizens
Information security management system standard
Cybersecurity risk management framework
Healthcare data privacy and security in the US
Service organization controls for data security
Refer to the exhibit.
```json
{
"Policy": {
"Name": "GDPR Data Retention",
"Type": "Retention",
"Locations": [
"SharePoint",
"OneDrive"
],
"Action": "RetainThenDelete",
"RetentionDuration": 365,
"RetentionTrigger": "WhenCreated"
}
}
```Refer to the exhibit. ```kusto // KQL query in Microsoft Sentinel SecurityAlert | where AlertName == "MFA failure anomaly" | where TimeGenerated > ago(7d) | summarize Count = count() by UserPrincipalName | where Count > 5 ```
{
"Classification": {
"Type": "SensitiveInformationType",
"Id": "50842eb7-edc8-4019-85dd-5a5c1f2bb085",
"Name": "Contoso Credit Card",
"MinCount": 1,
"MaxCount": 5
},
"Actions": [
{
"ActionType": "BlockAccess",
"Behavior": "BlockWithOverride"
},
{
"ActionType": "NotifyUser",
"NotifyUser": "DefaultNotifyUser",
"NotifyUserCustomSubject": "Sensitive data detected"
}
]
}{
"Id": "a1b2c3d4-1234-5678-9abc-def012345678",
"DisplayName": "Employee Data Retention",
"PolicySchedule": {
"RetentionPeriod": 365,
"RetentionAction": "Keep",
"ExpirationDate": null
},
"Locations": [
"ExchangeOnline",
"SharePointOnline"
],
"ContentMatchQuery": "Department:HR"
}{
"SearchResults": [
{
"ItemId": "msg001",
"Subject": "Re: ProjectX",
"Sender": "jane.doe@contoso.com",
"ReceivedDate": "2025-01-15T10:30:00Z",
"Size": 24576,
"HasAttachment": false,
"Source": "ExchangeOnline"
},
{
"ItemId": "doc123",
"Name": "ProjectX_Plan.pptx",
"Author": "john.smith@contoso.com",
"ModifiedDate": "2025-01-20T14:00:00Z",
"Size": 1048576,
"Source": "SharePointOnline"
}
]
}{
"PolicyName": "Retain-Financial-7Years",
"Locations": ["Exchange", "SharePoint", "OneDrive"],
"RetentionAction": "Delete",
"RetentionDuration": 2557,
"RetentionType": "ModificationAgeInDays"
}{
"RuleName": "Block-PII-External",
"Condition": "AnyOf(ContentContainsSensitiveInformation('U.S. Social Security Number'))",
"Action": "BlockAccess",
"UserNotification": true
}{
"LabelName": "Confidential-Finance",
"Settings": {
"Encryption": {
"Enabled": true,
"ProtectionType": "UserDefined"
},
"Marking": {
"Header": "CONFIDENTIAL",
"Footer": "Confidential - Finance"
}
}
}{
"LabelName": "Highly Confidential",
"Tooltip": "This label is for highly confidential data.",
"Actions": [
{
"ActionType": "Encrypt",
"EncryptionSettings": {
"EncryptionEnabled": true,
"ProtectWithRightsManagement": true
}
},
{
"ActionType": "Marking",
"MarkingSettings": {
"HeaderText": "HIGHLY CONFIDENTIAL",
"FooterText": "Do not forward"
}
}
]
}{
"PolicyName": "GDPR Data Retention",
"Locations": [
"ExchangeOnline",
"SharePointOnline",
"OneDriveForBusiness"
],
"RetentionSettings": {
"RetentionDuration": 365,
"RetentionTrigger": "WhenCreated",
"RetentionAction": "Delete",
"PreservationLock": false
}
}{
"Query": "Search-UnifiedAuditLog -StartDate (Get-Date).AddDays(-90) -EndDate (Get-Date) -Operations 'FileDeleted','FileModified','FileUploaded' -UserIds 'user@contoso.com'"
}Refer to the exhibit.
```json
{
"Policy": {
"Name": "Financial Data Retention",
"Type": "Microsoft 365 Retention",
"Action": "Retain",
"RetentionDuration": "7 years",
"Location": ["SharePoint"],
"Conditions": {
"SensitivityLabels": ["Highly Confidential"]
}
}
}
```Refer to the exhibit. ```kusto AuditLogs | where ActivityOperation == "FileUploaded" | where TimeGenerated > ago(30d) | where UserId == "user@contoso.com" | summarize FileCount = count() by FileType | where FileCount > 10 ```
{
"name": "GDPR-Data-Classification",
"type": "Microsoft.Purview/classificationRules",
"properties": {
"classificationName": "EU GDPR",
"ruleStatus": "Enabled",
"action": "ApplyLabel",
"labelId": "d9f8b5c2-..."
}
}Search-UnifiedAuditLog -StartDate (Get-Date).AddDays(-7) -EndDate (Get-Date) -Operations FileDeleted -ResultSize 1000
{
"name": "GDPR-PII-Protection",
"properties": {
"labels": [
{
"name": "Highly Confidential",
"sensitivity": "high",
"protection": {
"encryption": true,
"marking": "Watermark: CONFIDENTIAL"
},
"autoLabeling": {
"conditions": [
{
"sensitiveType": "EU_Deutschland_SocialSecurityNumber",
"confidenceLevel": "high"
}
],
"behavior": "apply"
}
}
]
}
}{
"identity": "SensitivityLabel",
"displayName": "Highly Confidential",
"encryptionOff": false,
"encryptionEnabled": true,
"userOverrideEnabled": false,
"encryptWithUserDefinedPermissions": false,
"rightsManagementTemplateId": "a1b2c3d4-e5f6-7890-abcd-ef1234567890",
"auto-labeling": {
"sensitiveInfoTypeIds": ["SIT-ID-12345", "SIT-ID-67890"],
"minConfidence": 75
}
}$dlpPolicy = New-DlpCompliancePolicy -Name "CreditCardProtection" -ExchangeLocation All -SharePointLocation All New-DlpComplianceRule -Name "BlockHighConf" -Policy $dlpPolicy.Identity -BlockAccess $true -NotifyUser $true -NotifyAllowOverride $false -SentInfo SIT-CreditCardNumber
{
"RetentionCompliancePolicy": {
"Name": "LegalHold",
"Locations": ["SharePoint", "OneDrive"],
"RetentionDuration": 365,
"RetentionType": "Retain",
"RetentionAction": "KeepAndDelete"
}
}{
"policyType": "dlp",
"name": "PCI-DSS Policy",
"rules": [
{
"name": "Credit Card Rule",
"mode": "enforce",
"conditions": [
{
"conditionType": "contentContainsSensitiveInformation",
"sensitiveInformationType": "Credit Card Number",
"minCount": 1
}
],
"actions": [
{
"actionType": "blockAccess",
"blockLevel": "blockOnlyExternal"
}
]
}
]
}Search-UnifiedAuditLog -StartDate (Get-Date).AddDays(-7) -EndDate (Get-Date) -Operations FileDownloaded,FileAccessed | Where-Object {$_.UserId -eq "user@contoso.com"} | Format-Table CreationDate,Operation,ItemName{
"LabelId": "d9b2d4c9-4c8e-4f3a-9a7e-1b2c3d4e5f6a",
"DisplayName": "Highly Confidential",
"Tooltip": "This label is for highly confidential data.",
"Color": "Red",
"Priority": 1,
"SensitiveInfoTypes": [
{
"Name": "Credit Card Number",
"Id": "50842eb7-edc8-4019-85dd-5a5c1f2bb085"
}
]
}{
"PolicyName": "GDPR Data Subject Rights Policy",
"PolicyType": "CommunicationCompliance",
"Conditions": {
"SensitiveInfoTypes": [
"EU GDPR Personally Identifiable Information"
],
"SentTo": [
"privacy@contoso.com"
]
},
"Actions": [
"NotifyPolicyOwner",
"GenerateCase"
]
}{
"Name": "HR Retention Tag",
"Type": "RetentionLabel",
"Settings": {
"RetentionDuration": 2555,
"RetentionType": "Days",
"DeleteAfterRetention": true,
"RecordSettings": {
"RecordType": "Standard",
"Locked": false
}
}
}Search-UnifiedAuditLog -StartDate (Get-Date).AddDays(-90) -EndDate (Get-Date) -Operations FileAccessed,FileModified -RecordType SharePoint -ObjectId "https://contoso.sharepoint.com/sites/hr"
{
"DataSource": "Exchange",
"Filter": {
"Recipients": ["external@contoso.com"],
"SensitivityLabel": "Confidential"
},
"AlertThreshold": {
"Type": "Volume",
"Value": 10
}
}Refer to the exhibit.
{
"PolicyName": "Employee Retention Policy",
"PolicyType": "Retention",
"Locations": [
"Exchange",
"SharePoint",
"OneDrive"
],
"RetentionDuration": 365,
"RetentionAction": "KeepAndDelete",
"DispositionAction": "Delete"
}Refer to the exhibit.
{
"LabelName": "Confidential",
"LabelType": "Sensitivity",
"Encryption": {
"Enabled": true,
"ProtectionType": "UserDefined"
},
"Marking": {
"Header": "CONFIDENTIAL",
"Footer": "This document is confidential"
}
}Refer to the exhibit.
{
"PolicyName": "GDPR DLP Policy",
"PolicyType": "DLP",
"Rules": [
{
"Name": "Block PII Sharing",
"Conditions": {
"ContentContains": ["SensitiveType: CreditCardNumber"],
"RecipientIsExternal": true
},
"Actions": [
{
"Type": "BlockAccess"
},
{
"Type": "NotifyUser",
"Message": "Sharing credit card numbers is blocked."
}
]
}
]
}Refer to the exhibit.
{
"PolicyName": "HR DLP Policy",
"Rules": [
{
"Name": "Credit Card Rule",
"Conditions": {
"SensitiveInformation": {
"SensitiveInfoTypeId": "Credit Card Number",
"Count": 1
},
"Location": "All locations"
},
"Actions": [
{
"ActionType": "BlockAccess",
"Behavior": "BlockExternal"
},
{
"ActionType": "NotifyUser",
"NotifyUserType": "User"
}
]
}
]
}Refer to the exhibit.
{
"LabelId": "1f2e3d4c-5b6a-7c8d-9e0f-1a2b3c4d5e6f",
"DisplayName": "Highly Confidential",
"Tooltip": "This label is for highly confidential data.",
"AutoLabeling": {
"Enabled": true,
"Rules": [
{
"Condition": {
"SensitiveInformation": {
"SensitiveInfoTypeId": "Custom_PII_Type",
"Count": 1
}
},
"Behavior": "Apply"
}
]
},
"Protection": {
"Encryption": {
"Enabled": true,
"EncryptionMethod": "AES256"
}
}
}Refer to the exhibit.
{
"RetentionPolicyName": "Financial Retention",
"Locations": ["SharePoint", "OneDrive", "Exchange"],
"RetentionAction": "Retain",
"RetentionDuration": "7 years",
"RetentionType": "CreationAge",
"EndAction": "Delete"
}{
"Labels": [
{
"Name": "Confidential-Finance",
"Priority": 1,
"Settings": {
"Encryption": {
"ProtectionType": "UserDefined",
"RightsDefinitions": [
{"Users": "All", "Rights": "ViewOnly"}
]
},
"Marking": {
"Header": {
"Alignment": "Left",
"Text": "CONFIDENTIAL",
"FontColor": "Red",
"FontSize": 12
}
},
"AutoLabeling": {
"Rules": [
{
"Condition": {"SensitiveInfoType": "Credit Card Number"},
"Behavior": "Apply"
}
]
}
},
"SubLabels": [
{
"Name": "Finance-Europe",
"Priority": 2,
"Settings": {
"Encryption": {
"ProtectionType": "Template",
"TemplateId": "europe-finance-template"
},
"Marking": {
"Watermark": {
"Text": "EUROPE CONFIDENTIAL",
"Layout": "Diagonal",
"FontSize": 24
}
}
}
}
]
}
]
}{
"PolicyName": "HR Retention Policy",
"Locations": ["Exchange", "SharePoint", "OneDrive"],
"RetentionAction": "Delete",
"RetentionDuration": 365,
"RetentionType": "ModificationAge",
"ContentQuery": "Department eq 'HR'"
}{
"Property": "Microsoft.Office365.Compliance.Policy",
"PolicyName": "Global Retention Policy",
"PolicyType": "Retention",
"Locations": [
"Exchange",
"SharePoint",
"OneDrive",
"Teams"
],
"Settings": {
"RetentionTrigger": "When items were created",
"RetentionDuration": 365,
"RetentionType": "KeepAndDelete"
}
}