Veterans Affairs issues FedRAMP High ATO for Microsoft Azure Government

3-veterans-affairs-logo_1
3-veterans-affairs-logo_1

The Department of Veterans Affairs (VA), the US government’s largest civilian agency, has issued a FedRAMP High Authority to Operate (ATO) for Microsoft Azure Government. This validates that the Microsoft Azure Government cloud meets all security and compliance standards necessary to handle VA’s most sensitive data, to include PII and PHI workloads. The FedRAMP High…

1

Join us Feb. 22 in DC: “Achieving Governance in Today’s Cloud Era – Gov Edition”

Open Source Meetup 1
Open Source Meetup 1

With the ever-increasing complexity and proliferation of data, protecting our nation’s most valuable information is no easy endeavor. In response to this growing challenge, the Microsoft Azure Government DC user community will discuss strategies for governance that have helped government agencies prepare for today’s cloud era. Be sure to RSVP to join your government and…

0

California Law Enforcement Telecommunications System (CLETS) approves Microsoft Government Cloud services for Criminal Justice Information

California Law Enforcement Telecommunications System (CLETS) provides law enforcement and criminal justice agencies access to FBI and state Criminal Justice Information, along with the ability to communicate messages to other agencies within California, other states and Canada.  As the interface to criminal justice information systems, CLETS approval is required for access to critical, life-saving public…


Docker announces federal security and compliance controls for Docker Datacenter built on Azure Blueprint

docker-logo-0111
docker-logo-0111

Security and compliance are top of mind for government IT organizations.  It is important for these enterprises to have the ability to deploy applications on a commercial cloud platform that adheres to strong baseline security controls. U.S. Federal agencies and many non-government organizations are dependent on various standards and security assessments to ensure their systems…


Azure Blueprint is now available for the FedRAMP High Baseline

Azure Government Engineering is pleased to announce the release of Azure Blueprint for the FedRAMP High Baseline. As previously announced, the Azure Blueprint program is designed to facilitate the secure and compliant use of Azure Government, providing a simplified way to understand the scope of customer security responsibilities when architecting solutions in Azure, and streamlining…


Azure Blueprint: architecting secure solutions just got easier!

FedRAMP
FedRAMP

Azure Government Engineering is pleased to announce the initial release of the Azure Blueprint program! The program is designed to facilitate the secure and compliant use of Azure for government agencies and third-party providers building on behalf of government. Azure Government has been granted a JAB Provisional Authority to Operate (P-ATO) based on Microsoft internal…


Azure Government, the Most Trusted Cloud For Defense Industrial Base/ITAR Critical Workload

ITAR-Ready
ITAR-Ready

The DoD has implemented stringent new requirements in DFARS 252.204-7012 to protect against the loss, misuse, unauthorized access, or modification of protected information and the systems that contain that information. It further imposes cyber incident reporting requirements. Defense Industrial Base contractors need assurance that their subcontractors also meet these requirements. It’s especially crucial when they…


Microsoft Azure Government continuing to add to ITAR product catalog

ITAR-Ready
ITAR-Ready

Microsoft Azure announced in June of 2016 that the Microsoft Azure Government (MAG) region can now support the processing and storing of ITAR-regulated workloads and controlled applications. Since the announcement, we have added over 8 services to the ITAR product catalog. ITAR, or International Traffic in Arms Regulations, controls the export and import of defense…


With 23 states (and growing) – Microsoft is the CJIS cloud leader

CJIS
CJIS

In December 2012 Microsoft was the first hyperscale cloud provider to contractually attest to the applicable CJIS controls with a signed CJIS management agreement and CJIS Security Addendum. It was three years before any cloud provider. Since 2012, we have worked one-by-one to sign agreements with 23 other states and our goal of reaching all…


Microsoft signs CJIS Security Addendum for Oregon

CJIS
CJIS

I was honored to have the opportunity to present on the subject of the Liability of the Data Breach (and how to prevent it) at the Oregon CJIS User Conference in Bend last week.  In the conference opening keynote, Major Tom M. Worthy, Oregon State Police, announced “The Oregon State Police (OSP) is pleased to…