Back to course
Expert90 to 110 minutesInstructor visible
Security, compliance, and governance framework
Auditors ask for RBAC, least privilege, audit, retention, DLP, privacy, release, and governance evidence.
Business context
The architect must give security, legal, compliance, and IT a shared operating model.
Technical objective
Build an enterprise M365 governance framework and control matrix.
Student instructions
- 1Define RBAC, least privilege, audit, retention, DLP, and privacy controls.
- 2Create governance committee, release, exception, and evidence workflows.
- 3Map controls to operating owners and review cadence.
- 4Validate the governance framework.
Troubleshooting
- If controls are not measurable, add evidence source and review owner.
Cleanup
- Export governance charter and control matrix.
Launch flow
Provisioning readiness
Waiting for launch
Click Launch lab to start the provisioning flow and watch each stage complete.
0%
- Request accepted
- Capacity reserved
- Templates queued
- Validation running
- Workspace ready
m365-governance-policy-complete
PendingRequired templates
- Microsoft 365 simulated tenant layer - defined
Validation checks
- M365 governance policy complete: Governance deliverable covers RBAC, least privilege, audit, retention, DLP, release management, exception handling, and review cadence.
Expected result
Governance framework covers security, compliance, operations, evidence, and release management.
Reset policy: Governance builder artifacts can reset per module. Teardown policy: Simulated tenant state expires with the course lab TTL.