Blog
What is Petya Ransomware? You may have heard about the latest worldwide ransomware attack called Petya. According to Microsoft, reports of the ransomware began spreading across Europe on June 27, 2017. The first infections were in the Ukraine, where more than 12,500 machines encountered the threat. Infections were then observed in another 64 countries including Belgum,...
This week, FedRAMP published a weekly tip that discusses POA&Ms and testing evidence timeliness. Q: What purpose does the Plan of Action & Milestones (POA&M) document serve? A: The purpose of the POA&M is to facilitate a disciplined and structured approach to mitigating risks in accordance with the CSP’s risk mitigation strategy. The POA&Ms include...
In our look at recently added Cognitive Services for Azure Government, we’re exploring individual features to show you how they’re applied in governmental agencies. After you master how to use the Voice and Language features, it’s time to look at the popular Speech feature to help you be able to augment user experiences. With Speech,...
This week, FedRAMP published a weekly tip that discusses CSP transfers of ownership and ISSO assignments for a JAB P-ATO: Q: Is there an established process for what is supposed to occur when ownership of an authorized service transfers from one Cloud Service Provider (CSP) to another? A: If there were NO changes to the...
Not long ago, Microsoft added a popular feature to Azure Government that was only available in the standard edition. Azure’s Cognitive Services became a popular feature thanks to its comprehensive ability to integrate machine learning API’s into various processes. It took a while for this to become available in Azure’s Government edition, but now it’s...
This week, FedRAMP published a weekly tip that addresses Incident Response Plans and Security Assessment Reports: Q: Does FedRAMP provide a template for an Incident Response Plan? A: Security Control IR-8 requires CSPs to develop an Incident Response Plan (IRP). The IRP is a required document within security authorization packages. FedRAMP does not provide a...
While Microsoft continues to update Azure Government to superior levels, learning how to use existing features can get you moving fast on enjoying the benefits. As a government office, you obviously have no time to waste on changing the way you manage and access data. The cloud-based platform in Azure is going to give you...
This week, FedRAMP published a weekly tip that addresses applying for an Agency High Baseline Authorization and an RAR Federal Mandate that is often overlooked: Q: What are some frequently asked questions for CSPs who currently hold an Agency Authorization to Operate (ATO) at the Moderate level, but wish to apply for an Agency High...
Since early this year, Microsoft added significant new features to Office 365 Government that streamline many functions you deal with daily in your government office. One of the newest ones is an update to the software’s Project Online feature. Now you can add more projects than ever before, something you probably need as demands increase....
This week, FedRAMP published a weekly tip that addresses common mistakes made by Cloud Service Providers (CSPs). Q: What are some common mistakes that arise when addressing Control Implementation statements? A: There are several mistakes that CSPs encounter when drafting their Control Implementation statements. Some of those include: Customer Responsibility The customer specific responsibility should...