Lance Bellers - Fotolia
WASHINGTON, D.C. -- Microsoft is working to help drive digital transformation for federal, state and local governments by enabling them to adopt the attributes of a modern workplace without sacrificing security.
In that regard, Microsoft this week announced Azure Government Secret, a fortified cloud offering that supports secret-level classified information and workloads. Microsoft made this and a series of other announcements at its sixth annual Microsoft Government Cloud Forum.
Azure Government Secret for classified data
Microsoft said it will make Azure Government Secret available to government agencies that have data classified as secret.
"Azure Government Secret will deliver multi-tenant cloud infrastructure and cloud capabilities to U.S. federal civilian, Department of Defense, intelligence community, and U.S. government partners working within secret enclaves," said Tom Keane, head of global infrastructure for Microsoft Azure, in a blog post. "Customers with secret requirements can expect to gain access to technologies at scale, including services such as cognitive capabilities, artificial intelligence, and predictive analytics."
Azure Security Center
Microsoft also said it is bringing Azure Security Center to Azure Government. Azure Security Center provides security management and threat protection for hybrid clouds.
In a blog post on integrating Azure Security Center with Azure Government, Sarah Fender, principal program manager for Azure cybersecurity, said Azure Security Center will help Azure Government customers do the following:
- Monitor security across cloud and on-premises workloads;
- Apply policy to ensure compliance with security standards;
- Find and fix vulnerabilities before they can be exploited;
- Block malicious activity by applying adaptive application and network access controls;
- Use advanced analytics and threat intelligence to detect attacks; and
- Simplify investigation for rapid threat response.
Charles Kingprincipal analyst at Pund-IT
In addition, Microsoft made security and audit capabilities available in Azure Government.
"The Security & Audit solution within Azure Log Analytics features threat detections, powered by Security Center analytics and Microsoft global threat intelligence, to identify inbound attacks, malicious activity that could indicate a breach, and attempts to exfiltrate data or mount additional attacks," Fender wrote.
"I think it's safe to say high-level security clearance has become table stakes for cloud players that intend to work with public-sector clients," said Charles King, principal analyst at Pund-IT. "It's particularly important for Microsoft, given the widespread use of its Office productivity tools and applications. In addition, the increasing targeting of government agencies by professional and politically connected cybercriminals makes it critical for their cloud providers to support robust cloud security capabilities."
Microsoft 365 coming in 2018
Meanwhile, Microsoft also announced that in the half of 2018, it will make Microsoft 365 available for federal agencies. Microsoft 365 brings together Office 365, Windows 10 and Enterprise Mobility + Security into a cloud offering.
The U.S. Small Business Administration (SBA) uses Office 365 U.S. Government and will adopt Microsoft 365 to drive down costs of its mobility, security and collaboration tool sets, said Maria Roat, CIO of the SBA.
Roat's advice to other government agencies: "Burn the bridges behind you. We have shut stuff down, turned things off -- there is no going back to the changes we're implementing."
Among the drivers pushing SBA to the cloud was "getting out of our data centers," Roat said. Additionally, she said the SBA is using Microsoft engineers in supporting disasters. "We're doing a sprint right now," she said. "We have a lot of engineering support from Microsoft right now."
Dynamics and blockchain
Microsoft also said its Dynamics 365 Government is in the process of achieving FedRAMP High certification. The Federal Risk and Authorization Management Program, or FedRAMP, is a governmentwide program that provides a standardized approach to security.
In addition, Microsoft is establishing Dynamics 365 capabilities for the Department of Defense to meet Defense Information Systems Agency (DISA) Impact Level 4. "In an Impact Level 4-compliant environment, our DOD and defense industry customers will have more options for sharing data and connecting teams and departments," said Gail Thomas, vice president of public sector at Microsoft, in a blog post.
Microsoft also launched a new blockchain initiative known as Blockchain for Azure Government. "At its core, a blockchain is a data structure that's used to create a digital transaction ledger that, instead of resting with a single provider, is shared among a distributed network of computers," Keane said in his post. "Blockchain technologies deployed on Azure are applicable to many complex problems facing government today, including distribution of funds after natural disasters, registration of property ownership, and other issues involving tracking ownership of funds or assets through multiple transactions."
Other moves Microsoft made at its cloud forum to help drive digital transformation included expanding the high-performance computing offering in Azure Government, helping government customers to move their virtual desktop infrastructure to the cloud and enhancing accessibility in a company's government cloud offerings.
Check out Azure network services
Study results on government IT security
The rise of Azure Security Center