Information security is an essential part of the compliance process for larger enterprises and many local government and public sector bodies. It’s essential that the software that your organisation chooses meets the requirements of your industry. Compliance is a big part of any migration to a new version of SharePoint – such as the upcoming release of 2016, but also key to businesses adopting a cloud strategy with Azure or Office 365.
Microsoft technology provides the IT backbone for the majority of enterprises around the world, and SharePoint is increasingly at the hub of collaboration and storage, so it’s essential that it meets the requirements laid out in ISO 27001 and ISO 27018.
To help businesses achieve these goals, Microsoft has engaged with third party auditors to test and assess the software against both ISO standards as part of their Service Trust Initiative.
The report for Office 365 has now been published to assure customers that the software is fully compliant with these standards. This is likely to increase the pace with which businesses adopt cloud technologies by removing some of the organisational barriers that compliance erects.
The published ISO audit includes information on:
- How Personally Identifiable information is protected
- The Microsoft Information Security Risk Management Program
- the implementation of an information security management system for service development and support
Compliance with these essential international standards has been achieved through an overall framework that combines information security, privacy and regulatory requirements which has been implemented across all aspects of the software. More information about the report is available direct from Microsoft via their Service Trust Platform – or by speaking to one of our fully trained SharePoint consultants who can guide you through the process of ensuring ISO compliance in SharePoint for your organisation.