Microsoft Information Security Administrator SC401 Training - Honduras

Information Security Administrator SC401 Training Course Outline

Module 1: Protect Sensitive Data in a Digital World

• The Growing Need for Data Protection
• The Challenges of Managing Sensitive Data
• Protect Data in a Zero Trust World
• Understand Data Classification and Protection
• Prevent Data Leaks and Insider Threats
• Manage Security Alerts and Respond to Threats
• Protect AI-Generated and AI-Processed Data

Module 2: Classify Data for Protection and Governance

• Data Classification Overview
• Classify Data Using Sensitive Information Types
• Classify Data Using Trainable Classifiers
• Create a Custom Trainable Classifier

Module 3: Review and Analyse Data Classification and Protection

• Review Classification and Protection Insights
• Analyse Classified Data with Data and Content Explorer
• Monitor and Review Actions on Labeled Data

Module 4: Create and Manage Sensitive Information Types

• Sensitive Information Type Overview
• Compare Built-In Versus Custom Sensitive Information Types
• Create and Manage Custom Sensitive Information Types
• Create and Manage Exact Data Match Sensitive info Types
• Implement Document Fingerprinting
• Describe Named Entities
• Create a Keyword Dictionary

Module 5: Create and Configure Sensitivity Labels with Microsoft Purview

• Sensitivity Label Overview
• Create and Configure Sensitivity Labels and Label Policies
• Configure Encryption with Sensitivity Labels
• Implement Auto-Labeling Policies
• Track and Evaluate Sensitivity Label Usage in Microsoft Purview

Module 6: Apply Sensitivity Labels for Data Protection

• Foundations of Sensitivity Label Integration in Microsoft 365
• Manage Sensitivity Labels in Office Apps
• Apply Sensitivity Labels with Microsoft 365 Copilot for Secure Collaboration
• Protect Meetings with Sensitivity Labels
• Apply Sensitivity Labels to Microsoft Teams, Microsoft 365 Groups, and SharePoint Sites

Module 7: Classify and protect on-premises data with Microsoft Purview

• Protect On-Premises Files with Microsoft Purview
• Prepare your Environment for the Microsoft Purview Information Protection Scanner
• Configure and Install the Microsoft Purview Information Protection Scanner
• Run and Manage the Scanner
• Enforce Data Loss Prevention Policies on On-Premises Files

Module 8: Understand Microsoft 365 encryption

• Learn How Microsoft 365 Data is Encrypted at Rest
• Understand Service Encryption in Microsoft Purview
• Explore Customer Key Management using Customer Key
• Learn How Data is Encrypted in-Transit

Module 9: Protect email with Microsoft Purview Message Encryption

• Understand Message Encryption
• Plan for Microsoft Purview Message Encryption
• Configure Microsoft Purview Message Encryption
• Customise Encrypted Email Branding with Microsoft Purview
• Control Encrypted Email Access with Advanced Message Encryption
• Use Microsoft Purview Message Encryption Templates in Mail Flow Rules

Module 10: Prevent Data Loss with Microsoft Purview

• Data Loss Prevention Overview
• Plan and Design DLP Policies
• Understand DLP Policy Deployment and Simulation Mode
• Create and Manage DLP Policies
• Integrate Adaptive Protection with DLP
• Use DLP Analytics (preview) to Identify Data Risks
• Understand DLP Alerts and Activity Tracking

Module 11: Implement Endpoint Data Loss Prevention (DLP) with Microsoft Purview

• Endpoint Data Loss Prevention (DLP) Overview
• Understand the Endpoint DLP Implementation Workflow
• Onboard Devices for Endpoint DLP
• Configure Settings for Endpoint DLP
• Create and Manage Endpoint DLP Policies
• Deploy the Microsoft Purview Browser Extension
• Configure Just-In-Time (JIT) Protection

Module 12: Configure DLP Policies for Microsoft Defender for Cloud Apps and Power Platform

• Configure Data Loss Prevention Policies for Power Platform
• Integrate Data Loss Prevention in Microsoft Defender for Cloud Apps
• Configure Policies in Microsoft Defender for Cloud Apps
• Manage Data Loss Prevention Violations in Microsoft Defender for Cloud Apps

Module 13: Investigate and respond to Microsoft Purview Data Loss Prevention alerts

• Understand Data Loss Prevention (DLP) Alerts
• Understand the DLP alert lifecycle
• Configure DLP Policies to Generate Alerts
• Investigate DLP Alerts in Microsoft Purview
• Investigate DLP Alerts in Microsoft Defender XDR
• Investigate DLP Alerts with Security Copilot and AI Agents
• Respond to DLP Alerts
• Exercise - Investigate a DLP Alert and Related Incident

Module 14: Understand Microsoft Purview Insider Risk Management

• What is an Insider Risk?
• Microsoft Purview Insider Risk Management Overview
• Microsoft Purview Insider Risk Management Features
• Case study: Protect Sensitive Data with Insider Risk Management

Module 15: Prepare for Microsoft Purview Insider Risk Management

• Plan for Insider Risk Management
• Prepare your Organisation for Insider Risk Management
• Configure Settings for Insider Risk Management
• Integrate Insider Risk Management with Data Sources and Tools

Module 16: Create and Manage Insider Risk Management Policies

• Understand Insider Risk Management Policy Templates
• Compare Quick and Custom Insider Risk Policies
• Create a Custom Insider Risk Management Policy
• Manage Policies in Insider Risk Management

Module 17: Investigate Insider Risk Alerts and Related Activity

• Understand Insider Risk Alerts and Investigations
• Manage Alert Volume in Insider Risk Management
• Investigate and Triage Insider Risk Alerts in Microsoft Purview
• Investigate Insider Risk Alerts with Security Copilot and AI Agents
• Analyse Alert Context with the All Risk Factors Tab
• Investigate Activity Details with the Activity Explorer Tab
• Review Patterns over time with the User Activity Tab
• Investigate Insider Risk Alerts in Microsoft Defender XDR
• Manage and Take Action on Insider Risk Cases
• Exercise - Investigate Potential Data Theft using Insider Risk Management

Module 18: Implement Adaptive Protection in Insider Risk Management

• Adaptive Protection Overview
• Understand and Configure Risk Levels in Adaptive Protection
• Configure Adaptive Protection
• Manage Adaptive Protection

Module 19: Understand How to Secure AI Data with Microsoft Purview

• Understand AI Data Security Risks
• Understand How Microsoft Purview secures AI data
• Evaluate Compliance Risks for AI Usage
• Identify AI-Related Data Exposure Risks
• Understand how Microsoft Purview Controls AI Data Access
• Detect and Respond to Risky AI Activity
• Retain and Search Copilot Prompts and Responses

Module 20: Secure Microsoft 365 Copilot Interactions with Microsoft Purview

• Understand how Microsoft 365 Copilot Changes Data Protection Needs
• Assess Copilot Regulatory Compliance with Compliance Manager
• Audit Copilot Interactions with Microsoft Purview
• Analyse Copilot Interactions with Communication Compliance
• Classify and Protect Copilot Content with Sensitivity Labels
• Apply DLP Policies to Microsoft 365 Copilot
• Apply retention Policies to Copilot Prompts and Responses
• Investigate and Delete Copilot Activity with eDiscovery

Module 21: Secure Enterprise and Browser-Based AI Apps with Microsoft Purview

• Understand Risks from Enterprise and Non-Microsoft AI Tools
• Assess AI Usage for Security and Compliance
• Identify Policy Violations with Communication Compliance
• Detect Risky AI Usage with Insider Risk Management
• Protect Sensitive Data in AI Apps with Microsoft Purview DLP
• Case Study: Use Adaptive Protection to Respond to AI-related risk
• Apply Retention Policies to AI app Prompts and Responses

Module 22: Secure Developer AI Environments with Microsoft Purview

• Understand Risks and Responsibilities in AI Development Environments
• Discover and Assess AI apps with DSPM for AI
• Classify, Restrict, and Retain AI Prompt Data
• Enforce Protections in Azure AI Services and Azure AI Foundry
• Apply Controls for Microsoft Entra-Registered Custom AI Apps
• Secure AI Agents built in Copilot Studio
• Manage Data Risks in Copilot in Fabric
• Investigate and Respond to Risky AI Activity

Module 23: Understand Retention in Microsoft Purview

• Overview of Retention and the Data Lifecycle
• Understand Retention Labels and Retention Policies
• Decide When to Apply Retention

Module 24: Implement and manage Microsoft 365 retention and recovery

• Plan for Retention and Disposition with Retention Labels
• Create and Publish Retention Labels
• Create and Manage Auto-Apply Retention Labels
• Create and Configure Adaptive Scopes
• Create and Configure Retention Policies
• Understand Policy and Label Precedence in Microsoft Purview
• Recover Content in Microsoft 365 Workloads

Module 25: Search and Investigate with Microsoft Purview Audit

• Microsoft Purview Audit overview
• Configure and Manage Microsoft Purview Audit
• Conduct Searches with Audit (Standard)
• Audit Microsoft Copilot for Microsoft 365 interactions
• Investigate Activities with Audit (Premium)
• Export Audit Log Data
• Configure Audit Retention with Audit (Premium)

Module 26: Search for Content with Microsoft Purview eDiscovery

• Understand eDiscovery and Content Search Capabilities
• Prerequisites for Using eDiscovery in Microsoft Purview
• Create an eDiscovery Search
• Conduct an eDiscovery Search
• Export eDiscovery Search Results

Who Should Attend this Microsoft Information Security Administrator SC-401 Training?

This Microsoft Information Security Administrator SC-401 Training is ideal for professionals responsible for implementing and managing security controls across Microsoft-based environments. It is particularly beneficial for:

• Information Security Administrator
• Cloud Security Engineer
• Microsoft 365 Security Administrator
• Identity and Access Management (IAM) Specialist
• Security Operations Centre (SOC) Analyst
• Cybersecurity Engineer
• Systems / Infrastructure Security Administrator

Prerequisites of Microsoft Information Security Administrator SC-401 Training

There are no formal prerequisites to attend this Microsoft Information Security Administrator SC-401 Training. 

Microsoft Information Security Administrator SC-401 Course Overview

Microsoft Information Security Administrator SC-401 Training is a specialised programme designed to develop the skills required to implement, manage, and monitor an organisation’s security posture across Microsoft-based environments. Its importance lies in helping organisations strengthen resilience against evolving cyber threats and ensure robust protection of identities, data, and infrastructure. For organisations, this training enhances security governance, compliance alignment, and operational risk reduction. For individuals, it builds strong technical competence in identity security, data protection, and threat response. From a career perspective, this training significantly boosts employability by validating advanced expertise in one of the most in-demand cybersecurity roles today.

In this training, delegates will learn how to design and implement security controls, manage identity and access protection, configure data loss prevention policies, and apply governance frameworks across cloud and hybrid environments. They will explore Microsoft security features, analyse threats, manage compliance requirements, and understand how to operationalise enterprise-level security strategies. The course also equips learners with the ability to evaluate risk, respond to incidents effectively, and maintain a secure organisational environment aligned with modern cybersecurity practices.

Microsoft Information Security Administrator SC-401 Course Objectives

• To develop strong competence in Microsoft security administration principles
• To configure identity protection systems for secure access management
• To apply governance frameworks supporting compliance and security alignment
• To monitor security operations through structured analytical techniques
• To evaluate cyber risks using modern threat intelligence practices
• To manage incident response activities with effective coordination strategies

After attending this training, delegates will be able to design and deploy security controls, manage identity governance, configure data protection mechanisms, and respond effectively to cybersecurity threats across Microsoft-based infrastructures. They will be capable of analysing organisational vulnerabilities, implementing compliance-driven safeguards, and supporting security teams in maintaining robust operational governance.

What’s Included in this Information Security Administrator SC401 Training?

• World-Class Training Sessions from Experienced Instructors
• Information Security Administrator SC401 Certificate
• Digital Delegate Pack

You’ll also get access to the MyTKA Training Portal, which will be your go to hub for all your training.
Hands-On Labs: Included as part of our online instructor-led delivery, these labs provide real-world exercises in a simulated environment guided by expert instructors to enhance your practical skills.