Author
This week, FedRAMP published a weekly tip that discusses email notifications and background checks on staff members. TIP: When submitting a RAR or an authorization package, be sure to send an email notification to info@fedramp.gov. Cloud Service Providers (CSPs), Partnering Agencies, and/or Third Party Assessment Organizations (3PAOs) must send an email notification to info@fedramp.gov to let...
As we continue to explore Azure Government and the recent addition of their popular Cognitive Services, it’s worth noting how comprehensive this service is. We’ve looked into government applications for their Vision, Language, and Speech features. Now it’s time to look beyond the general categories and into something seemingly easy: Search. Microsoft is extremely deft...
What is Petya Ransomware? You may have heard about the latest worldwide ransomware attack called Petya. According to Microsoft, reports of the ransomware began spreading across Europe on June 27, 2017. The first infections were in the Ukraine, where more than 12,500 machines encountered the threat. Infections were then observed in another 64 countries including Belgum,...
This week, FedRAMP published a weekly tip that discusses POA&Ms and testing evidence timeliness. Q: What purpose does the Plan of Action & Milestones (POA&M) document serve? A: The purpose of the POA&M is to facilitate a disciplined and structured approach to mitigating risks in accordance with the CSP’s risk mitigation strategy. The POA&Ms include...
In our look at recently added Cognitive Services for Azure Government, we’re exploring individual features to show you how they’re applied in governmental agencies. After you master how to use the Voice and Language features, it’s time to look at the popular Speech feature to help you be able to augment user experiences. With Speech,...
This week, FedRAMP published a weekly tip that discusses CSP transfers of ownership and ISSO assignments for a JAB P-ATO: Q: Is there an established process for what is supposed to occur when ownership of an authorized service transfers from one Cloud Service Provider (CSP) to another? A: If there were NO changes to the...
Not long ago, Microsoft added a popular feature to Azure Government that was only available in the standard edition. Azure’s Cognitive Services became a popular feature thanks to its comprehensive ability to integrate machine learning API’s into various processes. It took a while for this to become available in Azure’s Government edition, but now it’s...
This week, FedRAMP published a weekly tip that addresses Incident Response Plans and Security Assessment Reports: Q: Does FedRAMP provide a template for an Incident Response Plan? A: Security Control IR-8 requires CSPs to develop an Incident Response Plan (IRP). The IRP is a required document within security authorization packages. FedRAMP does not provide a...
While Microsoft continues to update Azure Government to superior levels, learning how to use existing features can get you moving fast on enjoying the benefits. As a government office, you obviously have no time to waste on changing the way you manage and access data. The cloud-based platform in Azure is going to give you...
This week, FedRAMP published a weekly tip that addresses applying for an Agency High Baseline Authorization and an RAR Federal Mandate that is often overlooked: Q: What are some frequently asked questions for CSPs who currently hold an Agency Authorization to Operate (ATO) at the Moderate level, but wish to apply for an Agency High...