Microsoft Office 365 Data Loss Protection (DLP) Tutorial - YouTube

Welcome to the Sly Gittens-Tech Simplified channel

and in today's video,

I will be showcasing and discussing

how to create office 365 DLP

or data loss prevention policy from a template.

And you want to watch this video to the end

because I've got a special demo showcasing

how to make sure credit card information

doesn't leave your environment accidentally.

So stay tuned and watch this video to the end.

So the first thing I need you to do is make your way over to the Microsoft 365 admin Center

and then once you get here,

you're going to click on security

and then once this page loads,

we're going to click on data loss prevention

then click on policy

then click on create a policy.

Wow.

Since I'm showcasing us data, so let me search for that

and then I want to click on US financial data

and as you can see,

it protects information such as credit card numbers,

US bank account numbers,

ABA routing numbers as well right.

So you wanna click next.

I have the option to change the name or update the description.

They also gives me the ability to select

where my data is being stored that I want to protect

and be notified if it leaves our organization.

Where do you want to do that?

So I can say from all areas such as exchange email,

teams chat, channel messages, onedrive, a SharePoint

One thing I do want to show you if you do choose to...

specify the areas, you can remove something. If you don't use team in your environment,

you can remove it.

Areas I see a lot of customers using

in selecting who needs to follow this

because maybe everyone your organization don't need to have this policy

sent out to them

and some people that you might want to exclude just for certain reasons as well.

So you can include or exclude certain people.

But what I'm going to do is just protect everything.

So the next thing is what data do you want to find.

So they already selected it already for if this template I'm leverage

but if you do have other criteria,

you can go here and find that information.

And then, the next option allows you to select

"Do you only want to apply this policy to people outside the organization

or only with people inside the organization."

So you can definitely do that and then you have some other areas that you can configure

when you're going to use advance settings.

We're not going to be covering that in this video.

The next thing they want you to think about is "What do you want to do if we detect sensitive information?"

So what I want to do, I want to make sure that they notify the users when this policy matches, right.

The next thing I want to do is,

I want to say if one piece of this information is received,

I want you to send me a report

and I also want you to ensure that they can't send it by blocking it.

I do have the option of encrypting that message for exchange

but I just want to block it because I don't want this information to leave my environment.

2) I want to give my team members or my company employees

the possibility to override that policy.

Why would I want to do that?

Because maybe there's business justification that

warrants the ability to send that information outside the organization

and this example, I'm not going to do that.

I would say, :Hey check the Microsoft documentation for more information...

and also reach out to your legal team and your compliance team

to ensure that you're making the right decision right here.

So just make sure you do that.

Next is "Do you want to turn it on right away?"

For this demo purposes, I do want to turn it on right away.

For you, I probably say if you haven't rolled this out yet

to test it first and don't show any type of tips when you're testing it

and then just deploy it to a small subsection of people

and roll it out in phases to see

how does it work before you send it out globally to everyone in your company.

So click 'Next', then we're going to click'Create'.

Now, let's take a look at the actual demo of blocking a credit card leaving my organization.

Are you still with me? Are you still listening?

I know you're pretty attentive right now.

You locked into your focus.

So let's go to the next area.

Now, what I need you to do is go to Office.com or portal.office.com

and I need you to click on 'Outlook'

and once you click on 'Outlook',

let's create a new message.

Put in external email,

put in a fake credit our number.

Let's see what happens when we do this and the first thing you see is says set block this messes includes one or more recipients who aren't authorized to receive sensitive information please remove those recipients and try to send the message again this shows you how quick and easy it was to implement and for it to enforce in your environment so now I don't need to worry if this data is leaving in my environment because I know it's being blocked and I'll be notified so I can see it within my reporting structure to see who is sending this out to ensure that their account isn't compromised now that we learned that let's go to the next steps of what's going to happen in this video series so you made it to the end but the fun does not stop here next week Monday I'll be releasing a new video talking about passing that MS 500 Microsoft 365 security exam it's a hands-on test that gives up a lot of candidates trouble but I'm going to show you and how to pass it and the only way you can get this great information and stay notified is subscribing and also keep the learning going today and watch other videos of my channel until next time have a wonderful evening day or whatever time you're watching this video

The first thing you see, it says "Set block.

This message includes one or more recipients who aren't authorized to receive sensitive information."

Please remove those recipients and try to send the message again.

This shows you how quick and easy it was to implement

and for it to enforce in your environment.

So now, I don't need to worry if this data is leaving in my environment

because I know it's being blocked and I'll be notified.

So I can see it within my reporting structure

to see who is sending this out

to ensure that their account isn't compromised.

Now, that we learned that,

let's go to the next steps of what's going to happen in this video series.

So you made it to the end

but the fun does not stop here.

Next week Monday, I'll be releasing a new video

talking about passing that MS 500 Microsoft 365 security exam.

It's a hands-on test that gives up a lot of candidates trouble

but I'm going to show you and how to pass it.

And the only way you can get this great information and stay notified,

is subscribing and also keep the learning going today

and watch other videos of my channel.

Until next time, have a wonderful evening day or whatever time you're watching this video