Erica Toelle - Microsoft 365 Compliance: A Practical Guide to Managing Risk

Any source code or other supplementary material referenced by the author in this book is available to readers on GitHub via the books product page, located at www.apress.com/9781484257777 . For more detailed information, please visit http://www.apress.com/source-code .

Microsoft 365 Compliance is a book for anyone interested in Microsoft's Office 365 compliance solutions. It doesn't matter if you are technical or not; you will understand the content in this book. I have scoped these solutions to anything located in the Microsoft Compliance Center, focusing on what you can accomplish through the user interface. Compliance is always a joint effort between the business and IT, and I hope that this book helps both audiences implement Microsoft compliance solutions.

Each chapter begins with an overview of the business reasons for the compliance solution. It answers the why behind the solution. I hope that this information will help you to understand if the solution meets your business needs.

Next, I cover licensing and permissions for each solution. The licensing for compliance is complex, and you need to know up front if your organization can use the solution with the licenses you own. Permissions for compliance can also be complicated. More organizations are beginning to follow the security best practice of least permissions, meaning people only have the minimum access they need to perform their jobs. My goal is to help you follow the least permissions model with the Microsoft compliance solutions.

Then, we go over the how for each solution. This section covers the technical details for implementing compliance solutions. I explain every button, setting, and option for each solution. Again, I focus on what you can do through the user interface since that is what 95% of the customers I speak with want. I mention where you can use PowerShell and APIs with the solutions, but don't cover it in this book.

I end each chapter with a summary of what we learned and briefly introduce the next chapter.

Throughout the book, I use short URLs to direct you to additional resources. These URLs are case sensitive.

Finally, the information covered in this book changed weekly while I was writing. If you find an inaccuracy, please let me know so I can correct it in the next version. You can find me on LinkedIn at www.linkedin.com/in/ericatoelle/ .

I was the person to write this book, but the knowledge it contains represents an entire community's effort. Without their expertise and experiences, this book would not exist.

First, I would like to thank the Microsoft FastTrack Compliance SME team. I was honored to be a member of this team over the past year. Together we learned every aspect of the Microsoft compliance solutions and helped many customers on their deployment journeys. I specifically want to thank Chris Staab, Ryan Sturm, and Leandro Ramirez. They were never too busy to help me when I couldn't figure something out alone.

Next, I would like to thank a few Microsoft employees for always answering my email when I want to understand something undocumented. Roberto Yglesias, Nick Robinson, and Stefanie Bier, I couldn't have written this book without you.

I have been fortunate to be a member of the SharePoint community for the past 15 years of my career. The people I've met have become my extended family and have been an endless source of support. When I decided to switch my focus to 100% compliance a few years ago, the community gave me a platform for opportunities to speak, blog, podcast, and make videos, even though the topic was not yet popular.

And finally, I have to thank my #1 source of compliance inspiration, Joanne Klein. She pushes our industry forward with her innovative and creative compliance solutions, which she captures in her blog at https://joannecklein.com . Thank you for being my friend and confidant and for inspiring all of us.