Skip to Content

Microsoft 365 Security

Microsoft is an industry leader in cloud security

  • Microsoft implements policies and controls on par with or better than on-premises data centers of even the most sophisticated organizations.
  • Security in Microsoft 365 is an ongoing process, not a steady state. It is constantly maintained, enhanced, and verified by highly skilled, experienced and trained personnel. They strive to keep software and hardware technologies up to date and refined through robust designing, building, operating, and supporting processes.
  • All Microsoft 365 applications use 128-bit SSL/TLS encryption
  • Antivirus tools are applied to the whole environment and are kept up to date.  Multiple antivirus engines are used to protect Exchange Online.
  • Microsoft’s Online Services use the Security Development Lifecycle (SDL) for development, deployment, and maintenance.
  • Security Teams operate 24/7 monitoring for suspicious behaviour and blocking malicious activity.
  • Microsoft conducts regular security audits and employ ethical hacking techniques.
  • Microsoft 365 provides a service level agreement (SLA) and has 99.9% scheduled uptime.
  • Microsoft has multiple data centres within Europe offering resilience through a hosted redundant network architecture. Queen’s data is currently held in Dublin (live) and the Netherlands with one acting as a backup for the other. Typically failover is seamless between centres on a data level.
  • Microsoft 365 services are certified as compliant with ISO 27001 standards, completed SAS70 Type I and II audits. Microsoft adhere to the EU Data Clauses and the EU US Privacy Shield agreement, being the first to sign it on the 01/08/17.
  • Microsoft 365 offers patched systems and up to date software

 

How OneDrive safeguards your data in the cloud

Microsoft 365 Trust Center

GDPR FAQs