Microsoft 365
Microsoft 365 is a modern workplace cloud environment that can address the contemporary challenges financial services organizations face. Secure and flexible collaboration across the enterprise is combined with controls and policy enforcement to adhere to stringent regulatory compliance frameworks.
For information on how Microsoft 365 can help financial services move to a modern collaboration platform, while helping keep data and systems secure and compliant with regulations, see Key compliance and security considerations for US banking and capital markets.
The following subsections explain how Microsoft 365 can help financial services move to a modern collaboration platform, while helping keep data and systems secure and compliant with regulations.
Advanced Data Residency (ADR)
ADR enables financial services customers to comply with local data residency regulations by storing and managing their data within specific geographic boundaries. It provides the assurance that data isn't only stored but also processed within the region, aligning with sovereignty and regulatory requirements. For more information, see Advance Data Residency Commitments.
Double Key Encryption (DKE)
DKE can be used for financial institutions that handle sensitive customer information and must comply with various regulations. By using DKE, financial services can maintain control over one of the encryption keys, while the other is securely stored in Microsoft Azure, ensuring that Microsoft has no access to the data in question. For more information, see Double Key Encryption.
AIP labeling
Azure Information Protection (AIP) labeling allows financial institutions to classify, label, and protect documents and emails, ensuring that sensitive information is handled according to the organization's policies. It enables customers to apply labels manually or automatically, incorporating encryption, identity, and authorization policies.
Customer-managed keys
This feature empowers financial services customers to control the encryption keys and, so, access to their data at rest. It enhances security by ensuring that only the customer has access to these keys, not Microsoft, and in the process, provides an extra layer of protection for sensitive data. For more information, see the Customer-managed keys for Azure Storage encryption.
Audit logging
Audit logging capabilities in financial services provide a detailed record of system activities, offering insights into user actions, security changes, and data access, which is crucial for compliance and forensic analysis. For more information, see Audit logging and monitoring overview.
E2E encryption in Teams
End-to-End (E2E) encryption in Teams secures communication channels, ensuring that financial conversations and data shared during Teams meetings are encrypted from one end to the other. It prevents unauthorized access even if data is intercepted. For more information, see Use end-to-end encryption for one-to-one Microsoft Teams calls.
Microsoft Defender
Microsoft Defender for Endpoint (MDE), Microsoft Defender for Identity (MDI), and Microsoft Defender for Office 365 (MDO) offer a comprehensive security stack for financial services customers, providing advanced threat protection, detection, and response across endpoints, identities, and office applications. For more information, see the following pages:
- Microsoft Defender for Endpoint
- What is Microsoft Defender for Identity?
- Microsoft Defender for Office 365
Microsoft 365 for SharePoint hybrid
This feature allows financial services customers to maintain certain mailboxes or data repositories on-premises while using cloud identities and capabilities like Teams and security services, offering a flexible and secure hybrid environment. For more information, see Configure Microsoft 365 for SharePoint hybrid.
Microsoft Teams
Breaking down silos and enabling greater cross-group collaboration is one of the biggest challenges for financial service firms. Microsoft Teams and Copilot in Teams can help financial services organizations overcome these challenges. Microsoft Teams provides financial services organizations with the following benefits:
- Provides industry-leading capabilities for collaboration, productivity, real-time communication, knowledge sharing, and online events.
- Allows organizations to boost productivity, drive greater cross-group collaboration, and facilitate seamless communication across all channels.
For more information, see Microsoft Teams.
Fully instanced clouds
Fully instanced clouds provide financial services organizations with dedicated cloud environments that can be tailored to meet specific regulatory and compliance needs. Furthermore, they offer enhanced control over data residency and sovereignty. For more information, see Why use Microsoft public cloud for Sovereignty?.