You have a Microsoft 365 subscription that uses Microsoft Exchange Online.
You need to receive an alert if a user emails sensitive documents to specific external domains.
What should you create?
Click on the arrows to vote for the correct answer
A. B. C. D.A.
https://docs.microsoft.com/en-us/microsoft-365/compliance/dlp-policy-reference?view=o365-worldwideTo receive an alert if a user emails sensitive documents to specific external domains in a Microsoft 365 subscription that uses Microsoft Exchange Online, you should create a data loss prevention (DLP) policy that uses the Privacy category.
Explanation:
A data loss prevention (DLP) policy helps to protect sensitive information and prevent it from being shared or leaked outside the organization. A DLP policy can be used to monitor emails and attachments that are sent by users and block them or send an alert if they contain sensitive information.
To create a DLP policy, you can use the Microsoft 365 compliance center or PowerShell. The Privacy category in a DLP policy is used to detect and protect sensitive information such as credit card numbers, social security numbers, and other types of personal information.
To configure the DLP policy to send an alert when a user emails sensitive documents to specific external domains, you can follow these steps:
Open the Microsoft 365 compliance center and go to the Data loss prevention page.
Click Create a policy to create a new DLP policy.
In the Policy settings page, select the Privacy category and choose the sensitive information types that you want to protect.
In the Locations section, select the email option to apply the policy to emails.
In the Policy tips section, configure the action that you want to take when a sensitive document is detected. For example, you can send an alert to the user, manager, or administrator.
In the Policy settings section, select the external domains that you want to monitor.
Save the policy and test it to ensure that it is working as expected.
Once the DLP policy is configured, it will scan all outgoing emails and attachments and detect any sensitive information that matches the policy settings. If a user attempts to send a sensitive document to a specific external domain that is monitored by the policy, the policy will trigger an alert that can be sent to the appropriate recipients.
Option B, a Microsoft Cloud App Security activity policy, is not the correct answer because it is used to monitor and analyze user and admin activity across cloud apps, but it does not specifically monitor email attachments.
Option C, a Microsoft Cloud App Security file policy, is not the correct answer because it is used to scan files in cloud storage locations such as OneDrive and SharePoint, but it does not specifically monitor email attachments.
Option D, a DLP alert filter, is not the correct answer because it is used to filter the alerts generated by a DLP policy based on specific criteria, but it does not create the initial DLP policy.