Power365 Current - Security Guide

Introduction

Managing information system security is a priority for every organization. In fact, the level of security provided by software vendors has become a differentiating factor for IT purchase decisions. Quest strives to meet standards designed to provide its customers with their desired level of security as it relates to privacy, confidentiality, integrity and availability.

This document describes the security features of Binary Tree Power365. It reviews access control, protection of customer data, secure network communication, cryptographic standards and more.

About Binary Tree Power365

Binary Tree Power365 provides the following functionality:

• Full tenant discovery of users, groups, domains and more.

• Match, create, license and sync mailboxes, OneDrive, Teams and Microsoft 365 groups.

• Cross-tenant collaboration with calendar sharing, unified address lists and free/busy lookups

• Automated mail flow management before and after user migrations

• Move domains between tenants.

• Synchronize Active Directory and Azure Active Directory directories with customizable workflows.

• Migrate workstations, computers, servers, objects, users, groups and more.

• No servers, trusts, or network connectivity required.

• Data transformation and customizable mapping of directory attributes.

• Near-real time password hash synchronization.

• Trustless SID History migration.

Architecture Overview

Azure Datacenter Security

Microsoft Azure datacenters have the highest possible physical security and are considered among the most secure datacenters in the world. They are subject to regular audits and certifications including Service Organization Controls (SOC) 1, SOC 2 and ISO/IEC 27001:2005. Relevant references with additional information about the Windows Azure datacenter security can be found here:

• Azure Trust Center: https://azure.microsoft.com/en-us/support/trust-center/

• Microsoft Trust Center Compliance: https://www.microsoft.com/en-us/TrustCenter/Compliance?service=Azure#Icons

• Microsoft’s submission to the Cloud Security Alliance STAR registry: https://cloudsecurityalliance.org/star-registrant/microsoft-windows-azure/

• Whitepaper: Standard Response to Request for Information – Security and Privacy: http://www.microsoft.com/en-us/download/details.aspx?id=26647

• Microsoft Global Datacenters: Security & Compliance: https://www.microsoft.com/en-us/cloud-platform/global-datacenters

• Azure data-at-rest Encryption Best Practices: https://docs.microsoft.com/en-us/azure/security/azure-security-data-encryption-best-practices