Office 365 E5 Missing Critical Cloud Security Features

Artie Chang
Post by Artie Chang
November 10, 2016
office-365-missing-post-img1.png
  • Communications Content Not HIPAA Compliant – Office 365 E5 does not provide HIPAA compliant protection on communications content (voicemails, faxes, call recordings). This leaves critical personal information and communications susceptible to possible intruder access.

PanTerra provides complete end-to-end HIPAA compliance on both user content and communications content, ensuring privacy of all information stored in the PanTerra cloud. End-to-End HIPAA compliance protects sensitive content and communications not just at the cloud service, but through the connectivity to end devices as well as the end devices themselves (thru MFA authentication).

  • No Multi-Factor Authentication (MFA) Across All Devices – MFA authentication is an essential enterprise security feature to maintain the privacy and security of corporate content and communications. Office 365 E5 does not provide comprehensive MFA on all devices such as IP phones, conference phones, desktops and mobile devices; allowing intruders to gain access to corporate data by "impersonating" corporate clients.

PanTerra provides MFA on all connected devices for both content and communications access ensuring complete privacy and security on all content and communications.

  • No Support for Third-Party Single Sign On (SSO) Providers – Office 365 E5 does not support third party SSO providers.

PanTerra supports active directory as well as multiple third-party SSO providers such as OneLogin and Okta.

  • No Remote Active Device Manager – Office 365 E5 does not have a means to manage the security of multiple communications devices such as IP phones, desktops and mobile devices.

PanTerra provides complete multiple device management through its Remote Active Device Manager (RADM), which allows users and administrators to lock out specific devices should they be lost, stolen or compromised.

  • No Telecom Intrusion Monitoring – Hosted VoIP providers, including Microsoft, are susceptible to "relay hacking" where an outside intruder gains access to the hosted VoIP service via an IP phone client (can be softphone or regular desk phone) and relays international calls through that device on the corporate VoIP service. This can cost enterprises thousands of dollars in international calling costs in a matter of minutes. Office 365 E5 has no MFA (which would virtually eliminate the probability of being hacked in the first place) and no active monitoring of international calls within the account to determine if a relay hack is occurring. This leaves the enterprise highly susceptible to this type of costly intrusion.

PanTerra has both MFA and telecom intrusion detection/limiters such that, even if an intruder gained access to a client, they would be locked out after hitting a low threshold limit of calls.

Don’t get me started on scalability…really, don’t get me started…wait until you see my next post!

Tags:
Blog
Artie Chang
Post by Artie Chang
November 10, 2016
Arthur Chang is a distinguished leader with an extensive background spanning over two decades in the hi-tech industry. As the CEO of PanTerra, his visionary leadership and strategic insights have been pivotal to the company's trajectory.

Drawing on his experience as a serial entrepreneur in Silicon Valley, Arthur Chang has been an integral part of the success stories of numerous companies. His journey includes senior executive roles that have propelled growth and innovation. Before joining PanTerra Networks, Mr. Chang held the position of CEO at Cradle Technologies, where he led a multi-core multimedia DSP company to new heights. Prior to that, he held the CEO position at SoloPoint Communications, a prominent provider of telecommunications equipment to major industry players. During his tenure, Mr. Chang orchestrated the company's expansion, culminating in a successful IPO.

With a foundation that includes executive management roles in diverse technology sectors such as telecommunications, storage, server, and remote access markets, Mr. Chang brings a holistic understanding of the industry. His career began at Bell Laboratories in Naperville, IL, where he laid the groundwork for his remarkable journey. Throughout his professional journey, he has collaborated closely with Silicon Valley venture capitalists, contributing as a consultant and analyst.

Arthur Chang's expertise extends beyond leadership; he excels in areas such as talent acquisition, corporate strategy, and capital raising. With a B.S. degree in Electrical Engineering from Northwestern University, an M.S. degree in Computer Science and Electrical Engineering from the University of California, Berkeley, and an Executive MBA from the Stanford Graduate School of Business, Mr. Chang possesses a formidable educational foundation.

Mr. Chang's influence on corporate vision and product strategy is unparalleled, with a proven ability to guide businesses toward financial success. His prowess at fostering growth is complemented by his exceptional talent for recruiting top-tier executives and motivating them to excel. A seasoned entrepreneur well-versed in the startup ecosystem, Mr. Chang's acumen is complemented by his experience in working closely with boards and investors.

Comments