Compliance: non-negotiable
Requirements around compliance are complex and nuanced: from HIPAA to the IRS to the Department of Defense (DoD) and FedRAMP, cloud service providers should prove they not only understand compliance standards—but can help you meet them. Only government regulators can determine when an agency or organization is in compliance.
Microsoft is the only cloud service provider that offers a cloud that is DoD Impact Level 5 Provisional Authorization (PA)-ready for infrastructure, platform, and productivity services (DoD regions of Microsoft Azure Government and Office 365 U.S. Government Defense), and our Azure Government FedRAMP Provisional ATO’s include 26 services in the scope boundary. Microsoft has worked with customers to achieve FedRAMP compliance across all 3 clouds: Azure (IaaS, PaaS), O365 (SaaS) and Dynamics 365 (SaaS), the first cloud service to achieve a JAB P-ATO using the new FedRAMP Accelerated Process.
Microsoft’s compliance certifications and accreditations help government organizations to meet regulations spanning:
● Criminal Justice Information Services (CJIS) Security Policy regarding protection of Criminal Justice Information
● IRS Publication 1075 regarding protection of Federal Tax Information
● International Traffic in Arms Regulations (ITAR)
● Family Educational Rights and Privacy Act (FERPA) regarding protection of student privacy
● Health Insurance Portability and Accountability Act (HIPAA) regarding protection of private health information
● Federal Risk and Authorization Management Program (FedRAMP — including FedRAMP High, FedRAMP, Moderate and FedRAMP Accelerated) – to meet US Government cloud security requirements
Contact Microsoft and request a free trial of Azure Government, Office 365 Government, or Dynamics 365 Government
Visit the Microsoft Trust Center.
Return to Not All Clouds Are Created Equal