What is the primary purpose of regulatory compliance in MS-500 - Microsoft 365 Security Administration practice?