Data Loss Prevention policies (DLP)

Question 1

Your organization has a Microsoft 365 tenant. You need to include a sensitive information type in Data Subject Request cases. Which four actions should you perform in sequence?

Accepted Answer

Connect to the Security & Compliance admin center using PowerShell. Export the current rules as an XML file. Modify the file. Upload the file.

Question 2

Your organization has the DLP policy shown below. 📷 What will happen if a user sends an email that contains a credit card number?

Accepted Answer

The user can send the email but will be notified.

Question 3

You need to prevent any emails that contain information covered by the U.S. Health Insurance Act (HIPAA) from being sent to people outside of your organization unless the messages are sent to an external domain named gitbit.org. What should you do to set it up?

Accepted Answer

Open the Microsoft 365 Compliance admin center. Go to policies. Click Data loss prevention then click Policies. Click Create policies. Select U.S. Health Insurance Act (HIPAA). Disable all locations except Exchange email. Add an exception and block email from going outbound.

Question 4

Your organization has a Microsoft 365 tenant with a Microsoft SharePoint Online site named SiteA. An admin has created an eDiscovery case named CaseA that searches SiteA. You have created a new sensitive information type but when you look at CaseA the new sensitive information type is not returning any documents. What do you need to do to fix the case?

Accepted Answer

Initiate a re-indexing of SiteA.

Question 5

You need to ensure that a user named Joe Gruber receives incident reports when email messages that contain data covered by the Canada Health Information Act (HIA) are sent outside of your organization. What steps should you take to complete the task?

Accepted Answer

From the Microsoft 365 compliance center create a new Data loss prevention policy with a customized alert notification.

Question 6

You create a data loss prevention (DLP) policy with the following settings: Conditions Sensitive info types: Credit card number, U.S. bank account number, ABA routing number. Shared with people outside your organization User notifications Notify these people: The person who sent the content, the owner of the content, the owner of the SharePoint site or OneDrive account. User overrides Let people who see the tip override the policy and share the content is checked. What happens when a user attempts to send an email message that contains sensitive information?

Accepted Answer

The user receives a notification and can send the email message.

Question 7

Your organization has a Microsoft 365 tenant and a database that stores client information. Each client has a unique 10-digit ID field that starts with Git- and then has the 10-digit ID. Your manager has asked you to implement a data loss prevention (DLP) policy that meets the following security requirements: Emails that contain a single client ID can be sent to anyone, including those outside the company. Emails that contain more than 2 client IDs must not be sent until the company's compliance/security team approves them. Which two components should you configure?

Accepted Answer

DLP policy. Sensitive information type.

Question 8

Your organization has a Microsoft 365 tenant with the primary domain of gitbit.org OneDrive contains the following files that are shared externally. 📷 A DLP policy is created and assigned to OneDrive, where it is configured with the following rules: First Rule: This applies when content is marked with Label1 and shared with people outside your organization Limit external users' access to the content. Notify the user who shared or last modified the content. Allow overrides from Microsoft 365 services. Priority set to 0 Second Rule: This applies when content is marked with Label1 or Label2 Block everyone from accessing the content excluding the owner and last modifier Priority set to 1 Third Rule: This applies when content is marked with Label2 and shared with people outside my organization Restrict access by blocking people outside your organization. Notify the user who shared or last modified the content. Allow overrides from Microsoft 365 services. Priority set to 2 Click yes if the statement is true. If the statement is false select No.

Accepted Answer

No. No. No.

Question 9

You have a Microsoft 365 subscription. You identify the following data loss prevention (DLP) requirements: Send notifications to users if they attempt to send attachments that contain EU Social Security Numbers (SSN) or Equivalent ID. Prevent any email messages that contain credit card numbers from being sent outside your organization. Block the external sharing of Microsoft OneDrive content that contains EU passport numbers. Send administrators email alerts if any rule matches occur. What is the minimum number of DLP policies and rules you must create to meet the requirements? To answer, select the appropriate options in the answer area.

Accepted Answer

3. 2.

GitBit

Data Loss Prevention policies (DLP)

Questions for this test