If you want to keep your Syncthing instance “quiet” to the outside world, read Limit Syncthing to only use local network: Review and suggestions appreciated - Support - Syncthing Community Forum
I think it covers most parts which may communicate to the outside world.
But your IT-department may want to re-think their monitoring approach if Syncthing gets flagged as TOR. Either their traffic analyser is wrong, or they use a terrible practise of relying on IP-reputation.