Introduction
Managing information system security is a priority for every organization. In fact, the level of security provided by software vendors has become a differentiating factor for IT purchase decisions. Quest strives to meet standards designed to provide its customers with their desired level of security as it relates to privacy, confidentiality, integrity and availability.
This document describes the security features of Quest Nova Delegation & Policy Control. This includes access control, protection of customer data, secure network communication, and cryptographic standards.
About Quest Nova Delegation & Policy Control
Quest Nova Delegation & Policy Control provides granular delegation and policy control for Office 365, enabling you to assign pre-defined roles and responsibilities to specific users, such as help desk operators, country-level administrators, or even end-users setting boundaries far more precise than native delegation. Quest Nova also includes policy-based automation for authorization, service configuration and license assignment.
Quest Nova Delegation & Policy Control is hosted in Microsoft Azure and delivers most of its functions via Microsoft Azure cloud services.
Hybrid accounts are managed via Quest Nova On-Premises Agent.
Architecture overview
The following scheme shows the key components of the Quest Nova Delegation & Policy Control configuration.
Azure datecenter security
Microsoft Azure datacenters have the highest possible physical security and are considered among the most secure and well protected datacenters in the world. They are subject to regular audits and certifications including Service Organization Controls (SOC) 1, SOC 2 and ISO/IEC 27001:2005.
Relevant references with additional information about the Windows Azure datacenter security can be found here:
·Microsoft Azure Trust Center: https://azure.microsoft.com/en-us/overview/trusted-cloud/
·Microsoft Trust Center Compliance: https://www.microsoft.com/en-us/trust-center/compliance/compliance-overview?service=Azure#Icons
·Microsofts submission to the Cloud Security Alliance STAR registry: https://cloudsecurityalliance.org/star/registry/
·Whitepaper: Standard Response to Request for Information Security and Privacy: http://www.microsoft.com/en-us/download/details.aspx?id=26647
·Microsoft Global Datacenters: Security & Compliance: https://www.microsoft.com/en-us/cloud-platform/global-datacenters
·Azure data security and encryption best practices: https://docs.microsoft.com/en-us/azure/security/fundamentals/data-encryption-best-practices
·Microsoft and FIPS:https://docs.microsoft.com/en-us/compliance/regulatory/offering-FIPS-140-2?view=o365-worldwide