Hosted Exchange Security

Email security is one of the truly strong points of a hosted Exchange solution. Exchange is an enterprise grade email and collaboration solution, with email security protocols available to satisfy even the most stringent regulations, making compliance with email security legislation easy to achieve for every business.

Since a hosted exchange is a multi-tenant environment, most hosted exchange providers provide many layers of security. These often include:

  • Redundant Enterprise-Grade Firewalls
  • VPN's and traffice management
  • Intrision Detection Systems (IDS)
  • Data Replication (storing data at more than one physical location)
  • Physical security (CCTV, Bio-Metric employee access controls, etc.)

In addition to spam filtering and virus protection, hosted exchange also offers the option of email encryption. Encryption is offered by most hosted exchange providers for an additional fee.

Some hosted exchange providers offer one of the most comprehensive security feature built in to Exchange Server - Data Loss Prevention (DLP). This is a whole suite of email security protocols, which combined, result in an extremely secure email service.

DLP works on several levels. Primarily, DLP attempts to stop users from sending potentially sensitive data to people who are not authorized to view it by enforcing system wide security policies. DLP analyses the contents of each email being sent and compares it to the compliance policies in place. If something is found within an outgoing email that conflicts with the server side policies, the email user is warned and the email will not be sent.

Data Loss Prevention comes pre-configured for several widely used compliance standards such as Payment Card Industry (PCI) and Personal Identifiable Information (PII). This means that businesses who make the move to a hosted Exchange email environment can simply and quickly enforce a recognized compliance standard with very little effort. Furthermore, these compliance standards can be modified to suit the exact requirements of the company.

Microsoft Outlook users using an exchange server with DLP enabled receive an additional set of security functions while sending and receiving emails in the form of PolicyTips. These are security notifications within Outlook that help advise email users when they are potentially taking an action that is in conflict with the security policies in place on the Exchange server. For example, if a user attaches a document to an email that contains information that the Exchange server security policies deems a security risk, then they will be advised by a simple pop-up message that they are sending a potentially insecure email and asked to revise the content.

Overall, when it comes to email server security, few other email solutions can match a hosted Microsoft Exchange service in terms of features and robustness. Here is a summary of the main business email security features to be found in Microsoft Exchange:

  • Server side spam filtering.
  • Server side anti-virus protection.
  • Integrate security policies based on business rules and standard compliance rules.
  • Data Loss Prevention actively monitoring the content of all outgoing emails.
  • Additional layer of security for Microsoft Outlook users in the form of PolicyTips.