I’ve been having fun digging into Azure and Microsoft 365 from a security standpoint. Specifically, learning and exploring all of the tools and options they have when it comes to IAM, information protection, compliance, etc.
Again, for me, maybe because of my Windows background, I really just dig what they are doing with Azure and M365 and want to know as much as I can when it comes to security within these platforms.
One of the areas I found myself a little unclear on initially, is the difference between Information Protection and Information Governance in the M365 Compliance Center. In my mind they could be in the same section, but as I dug deeper, and actually navigated through the sections, it finally clicked for me.
The labels you use or manage in each section is what helped it make sense to me. When dealing with Information Protection, you’re dealing with sensitivity labels, which can help you secure and encrypt data, among other things.
When you’re dealing with Information Governance, you’re focused on retention labels. How long can you keep this data? When can this data be deleted? What happens if it is deleted before it should be?
I know, it may seem like a simple thing, but when you’re digging into the vast amount of security tools and services Microsoft provides, sometimes those subtle differences can be missed. At least for me, this is what helped solidify why each section exists, and why I would use one over the other.
Maybe this will help it click for someone else out there, but hey, if not, it helped me learn what I wanted to learn, so I’m cool with that!
Leave a Reply