Maintaining the security and privacy of customer data in Office 365 is our top priority. In line with our efforts to be more transparent with our customers, we have enhanced auditing around Office 365 information security and privacy controls. Office 365 is one of the first major cloud service providers to be assessed against both ISO 27001 and ISO 27018 standards.
Customer security considerations (CSC) workbook can be used by customers to facilitate a quick review and implementation of the security controls available in Office 365. The CSC workbook is designed to provide customers with information on key security and compliance features to consider when adopting, deploying and managing Office 365.
Office 365 customers want assurance that effective controls are in place to safeguard their data. We have enhanced our Service Organization Controls (SOC) audit reports with two new trust principles, Processing Integrity and Confidentiality. Insights from these reports help you evaluate how Office 365 maintains compliance with your regulatory requirements and helps you manage the move to Office 365.