Loading in 2 Seconds...
Loading in 2 Seconds...
1. Trusting Office 365 2. Overview of Office 365 for Government. Bob Ballard Chief IT Strategist Public Sector Microsoft Corporation rballard@Microsoft.com. The trust q uestions …. Privacy. Transparency. What does privacy at Microsoft mean?
Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.
1. Trusting Office 365 2. Overview of Office 365 for Government Bob Ballard Chief IT Strategist Public Sector Microsoft Corporation rballard@Microsoft.com
The trust questions… Privacy Transparency What does privacy at Microsoft mean? Are you using my data to build advertising products? Where is my data? Who has access to my data ? Compliance Security What certifications and capabilities does Microsoft hold? How does Microsoft support customer compliance needs? Do I have the right to audit Microsoft? Is cloud computing secure? Are Microsoft Online Services secure?
Privacy at Office 365 At Microsoft, our strategy is to consistently set a “high bar” around privacy practices that support global standards for data handling and transfer No Advertising No advertising products out of Customer Data. No scanning of email or documents to build analytics or mine data. Data Portability Office 365 Customer Data belongs to the customer. Customers can export their data at any time. No Mingling Choices to keep Office 365 Customer Data separate from consumer services.
Transparency At Microsoft, our strategy is to consistently set a “high bar” around privacy practices that support global standards for data handling and transfer Where is Data Stored? Clear Data Maps and Geographic boundary information provided ‘Ship To’ address determines Data Center Location Who accesses and What is accessed? Core Customer Data accessed only for troubleshooting and malware prevention purposes Core Customer Data access limited to key personnel on an exception basis. How to get notified? Microsoft notifies you of changes in data center locations.
Service Security – Defense in DepthA risk-based, multi-dimensional approach to safeguarding services and data Security Management Threat and vulnerability management, monitoring, and response Access control and monitoring, file/data integrity Data Account management, training and awareness, screening User Application Secure engineering (SDL), access control and monitoring, anti-malware Host Access control and monitoring, anti-malware, patch and configuration management Internal network Dual-factor authentication, intrusion detection, vulnerability scanning Network perimeter Edge routers, intrusion detection, vulnerability scanning Facility Physical controls, video surveillance, access control
Compliance update Compliance with key standards Certification Audience Office 365
Office 365 for Government Government community cloud
Why a US Government community cloud? Given the strong sense of affinity and community within many government agencies, there has been a strong demand for a cloud made specifically for the government
Why a US Government community cloud? In response to this demand, Microsoft has added Office 365 for Government to the portfolio of our Cloud offerings
Why a US Government community cloud? Physically segmented core customer data Office 365 For Government will be built to the same Enterprise security standards that the Office 365 For Enterprise offering has today Public Trust Medium Govt. adjudicated BI’s
GCC: Integral part of Microsoft cloud vision Multi-Tenant Public Cloud Multi-Tenant Cloud • Microsoft offering for all world wide customers • US Government data stored in US data centers • FISMA ATO with 1 agency & submitted for ATO with several agencies • Microsoft background investigations Office 365 For Government • Microsoft offering for qualifying US Govt. customers • US Govt. tenants segregated from Enterprise cloud tenants • Based on NIST definition of community cloud • FISMA package to be submitted for ATO with first customer • Public Trust Moderate Background Investigations Enterprise-Dedicated Cloud Dedicated Cloud • Dedicated infrastructure for each customer • Microsoft background investigations Dedicated -ITAR • Dedicated infrastructure for each qualifying customer • Isolated & separate from Dedicated Public Cloud in caged env. • FISMA-Moderate ATO from USDA • Support for customers complying with ITAR regulatory controls • Public Trust High Background Investigations
What you will find in each cloud? 1 2 1 Details of FISMA Moderate package will vary by environment. 2 The FISMA package includes a list of control implementations, operational procedures and testing that shows how the service complies with NIST requirements. The FISMA ATO (Authority To Operate) indicates that a Federal entity has reviewed and approved the FISMA Package.
Data segregation Core Customer data is segregated • Exchange – Separate Forest • SharePoint – Separate Farm “Core Customer Data” refers to data generated by the customer in the course of their business and provided to O365 teams to hold in the course of providing services, defined as “Core Customer Data” in the O365 Asset Classification* policy. Core Customer Data is located in US Soil Other data classes are handled according to existing O365 MT standards as described in the Trust Center. (E.G. existing regional controls for PII.)
What is the next big Government initiative? IPv6 • What is IPv6 (Internet Protocol version 6) is a version of the Internet Protocol intended to succeed IPV4, which is the protocol currently used to direct almost all Internet traffic • Data Transfer in Internet happens via packets that are routed across networks by routing protocols. Packets require an addressing scheme (IPv4/IPv6), to specify source & destination addresses. • Each host, computer or other device on the Internet requires an IP address in order to communicate. • Depletion of IPV4 Addresses: Last block of ipv4 addresses was assigned in February 2011. • Perception: Office 365 needs to be seen as supporting ipv6. This perception decides RFP wins. Below objections to ipv6 may don’t matter. • There may be unused ipv4 blocks that can be re-released. • Current ipv4 addresses should be enough. No one really uses ipv6. • Industry Trend: Industry Trend IPv6 solves the problem of IPv4 address depletion by offering a virtually limitless pool of IP addresses that can be used by computers, smartphones, home appliances, gaming devices and all sorts of sensors and actuators that have yet to be invented. • Primary reason to use ipv6: IPv4 uses 32-bit addresses and can support 4.3 billion devices connected directly to the Internet. IPv6, on the other hand, uses 128-bit addresses and supports 2 to the 128th power devices (greater than billion devices per human being on planet).
Office 365 Trust Center Clear messaging with plain English Details for security experts Links videos, whitepapers http://trust.office365.com