Office 365 is a security-hardened service, designed following the
Microsoft Security Development Lifecycle. We bring together the best practices from two decades of building enterprise software
and managing online services to give you an integrated software-as-a-service solution.
At the service level, Office 365 uses the defense-in-depth approach to provide physical, logical, and data layers of
security features and operational best practices. In addition, Office 365 gives you enterprise-grade
user and admin controls to further secure your environment.
Show allHide all
24-hour monitoring of datacenters.
Multi-factor authentication, including biometric scanning for datacenter access.
Internal datacenter network is segregated from the external network.
Role separation renders location of specific customer data unintelligible to the
personnel that have physical access.
Faulty drives and hardware are demagnetized and destroyed.
Protecting email with Microsoft Exchange Online Protection (EOP)
This white paper describes the defense-in-depth approach that the Microsoft Exchange Online Protection (EOP) online service
uses in order to stop malicious email messages from compromising your organization’s security.
Monitoring and protecting sensitive data in Office 365
Microsoft IT created Power BI dashboards to learn how corporate users share information. Find out how this solution helps
them detect sensitive data sharing and proactively manage information security risks.
Introduction to encryption in Office 365 white paper
This white paper introduces encryption in Office 365. It explains what encryption is and why it’s an important tool
in keeping your data secure and private, and it lays out the encryption options in Office 365.