Add to collection(s) Add to saved
  1. Business
  2. Management

Azure Security & Compliance

advertisement 
DCIM-B221
LoriWo@Microsoft.com
http://azure.microsoft.com/en-us/support/trust-center/
http://channel9.msdn.com/Events/TechEd
www.microsoft.com/learning
http://microsoft.com/technet
http://microsoft.com/msdn
Enter to Win a
Callaway Golf Set &
Big Bertha Driver
Stop by the Azure booth and enter for a daily drawing to win
a Callaway Strata Plus Men’s 18-piece golf set AND a Big
Bertha 2014 driver.
Technology trends: driving cloud adoption
BENEFITS
70%
Cloud Trend:
of CIOs will embrace a
cloud-first strategy in 2016
(IDC CIO Agenda webinar)
Speed
Scale
2 weeks
Scale from
Economics
to deliver new services
vs. 6-12 months with
traditional solution
30,000
250,000
$25,000
430B+
280%
50%
Microsoft Azure AD
authentications
to
site visitors instantly
year-over-year
database growth in
Microsoft Azure
AZURE ADOPTION
Microsoft Azure
in the cloud would cost
$100,000 on premises
of Fortune 500 use
Microsoft Azure
10
Cloud innovation
OPPORTUNITY FOR SECURITY & COMPLIANCE BENEFITS
Pre-adoption
Benefits realized
concern
94%
60% 62%
45%
experienced
cited concerns
security
around
benefits
data security
they as
didn’t
a barrier
previously
to adoptionhave
on-premise
said
concerned
privacythat
protection
the
increased
cloud would
as aresult
resultinof
a
moving
lack of data
to the
control
cloud
SECURTIY
•
•
•
•
•
Design/Operation
Infrastructure
Network
Identity/access
Data
PRIVACY
COMPLIANCE
Microsoft Azure
Trustworthy foundation
BUILT ON MICROSOFT EXPERIENCE AND INNOVATION
Trustworthy
Computing
Initiative
1st
Microsoft
Data
Center
Active
Directory
Windows
Update
Microsoft Security
Response Center
Microsoft Azure
Global
Data Center
Services
UK G-Cloud
Level 2
Malware
Protection
Center
SOC 2
SOC 1
Security
Development
Lifecycle
FedRAMP/
FISMA
Digital
Crimes
Unit
20+ Data
Centers
Operations
Security
Assurance
CSA Cloud
E.U. Data
Controls Matrix
Protection
ISO/IEC Directive HIPAA/
27001:2005
HITECH
PCI DSS
Level 1
Trustworthy foundation
BUILT ON MICROSOFT EXPERIENCE AND INNOVATION
Trustworthy
Computing
Initiative
1st
Microsoft
Data
Center
Active
Directory
20+ DataMalware
Centers:
UK G-Cloud
Level 2
Protection
Operating
Microsoft
Azure
in
8
Center
1
data centers around the SOC
world
Microsoft
Update
Microsoft Security
Response Center
Microsoft Azure
Global
Data Center
Services
Security
Development
Lifecycle
Digital
Crimes
Unit
FedRAMP/
FISMA
SOC 2
20+ Data
Centers
Operations
Security
Assurance
CSA Cloud
E.U. Data
Controls Matrix
Protection
ISO/IEC Directive HIPAA/
27001:2005
HITECH
PCI DSS
Level 1
Trustworthy foundation
BUILT ON MICROSOFT EXPERIENCE AND INNOVATION
Trustworthy
Computing
Initiative
1st
Microsoft
Data
Center
Active
Directory
Windows
Update
Microsoft Security
Response Center
Microsoft Azure
Global
Data Center
Services
UK G-Cloud
Level 2
Malware
Protection
Center
SOC 2
Digital
Crimes
Unit
20+ Data
Centers
Operations
Security
Assurance
Security Centers
of Excellence:
Protecting
Microsoft
CSA Cloud
E.U. Data
Controls Matrix
Protection
customers
combatting
ISO/IEC Directiveby
HIPAA/
27001:2005
HITECH
evolving
threats
SOC 1
Security
Development
Lifecycle
FedRAMP/
FISMA
PCI DSS
Level 1
Trustworthy foundation
BUILT ON MICROSOFT EXPERIENCE AND INNOVATION
Trustworthy
Computing
Initiative
1st
Microsoft
Data
Center
Active
Directory
Microsoft Azure
UK G-Cloud
Level 2
Malware
Protection
Center
Digital Crimes Unit:
Using legal and
technicalWindows
expertise Security
Development
to disruptUpdate
the way
Global
Lifecycle
Microsoft Security
Data Center
Response Center
cybercriminals
operate
Services
FedRAMP/
FISMA
SOC 2
SOC 1
Digital
Crimes
Unit
20+ Data
Centers
Operations
Security
Assurance
CSA Cloud
E.U. Data
Controls Matrix
Protection
ISO/IEC Directive HIPAA/
27001:2005
HITECH
PCI DSS
Level 1
Trustworthy foundation
BUILT ON MICROSOFT EXPERIENCE AND INNOVATION
Trustworthy
Computing
Initiative
1st
Microsoft
Data
Center
Compliance Standards: Malware
Protection
Active
Investing Directory
heavily in robustCenter
compliance processes, including
ISO 27001, FedRAMP, and HIPAA
Windows
Update
Microsoft Security
Response Center
Microsoft Azure
Global
Data Center
Services
Security
Development
Lifecycle
Digital
Crimes
Unit
FedRAMP/
FISMA
UK G-Cloud
Level 2
SOC 2
SOC 1
20+ Data
Centers
Operations
Security
Assurance
CSA Cloud
E.U. Data
Controls Matrix
Protection
ISO/IEC Directive HIPAA/
27001:2005
HITECH
PCI DSS
Level 1
Microsoft Azure
UNIFIED PLATFORM FOR MODERN BUSINESS
Automated
Elastic
Managed Resources
Usage Based
Microsoft Azure
17
Microsoft commitment
Unified platform for modern business
Microsoft Azure
Simplified compliance
Information
security
standards
Effective
controls
Government
& industry
certifications
ISO 27001:5
NIST 800-53
SOC 1 Type 2
SOC 2 Type 2
FedRAMP/FISMA
PCI DSS Level 1
UK G-Cloud
US-EU Safe Harbor
Microsoft Azure
Security compliance strategy
• Security goals set in context of
business and industry
requirements
Test and
audit
• Security analytics & best
practices deployed to detect
and respond to threats
• Benchmarked to a high bar of
certifications and accreditations
to ensure compliance
• Continual monitoring, test and
audit
Microsoft Azure
Security
benchmark
analysis
Security
analytics
Security
Compliance
Framework
Risk management
best practices
20
Certifications & programs
Program
Description
ISO/IEC 27001
Internationally recognized information security standard, broadly accepted outside U.S.
PCI DSS Level 1
Information security standard designed to prevent fraud through controls around credit card data
UK G-Cloud IL2
‘Protect' level of security for data processing, storage and transmission by UK public sector organization
including local and regional government
SSAE 16 / ISAE 3402
Accounting standard relied upon as the authoritative guidance for reporting on service organizations
(SOC 1, SOC 2, SOC 3)
FedRAMP/FISMA
U.S. Federal law enacted in 2002, based on NIST 800 series, 18 control domains, with in-depth audit, and
applies to all U.S. Federal agencies
Microsoft Azure
21
Contractual commitments
EU Data Privacy
Approval
Broad
contractual
scope
Microsoft Azure
• Microsoft meets high bar for protecting privacy of EU customer data
• EU Data Privacy approval allows Microsoft to transfer personal data across
international borders
• Only Microsoft is jointly approved from EU Article 29
• Microsoft makes strong contractual commitments to safeguard customer data
covered by HIPAA BAA, Data Processing Agreement, & E.U. Model Clauses
• Enterprise cloud-service specific privacy protections benefit every industry &
region
Shared responsibility
REDUCE SECURITY COSTS + MAINTAIN FLEXIBILITY, ACCESS, & CONTROL
On-Premises
Microsoft Azure
IaaS
PaaS
Customer
SaaS
Microsoft
http://azure.microsoft.com/en-us/support/trust-center/
For More Information
Windows Server 2012 R2
http://technet.microsoft.com/en-US/evalcenter/dn205286
System Center 2012 R2
http://technet.microsoft.com/en-US/evalcenter/dn205295
Azure Pack
http://www.microsoft.com/en-us/servercloud/products/windows-azure-pack
Microsoft Azure
http://azure.microsoft.com/en-us/
Come Visit Us in the Microsoft Solutions Experience!
Look for Datacenter and Infrastructure Management
TechExpo Level 1 Hall CD
http://channel9.msdn.com/Events/TechEd
www.microsoft.com/learning
http://microsoft.com/technet
http://microsoft.com/msdn
Enter to Win a
Callaway Golf Set &
Big Bertha Driver
Stop by the Azure booth and enter for a daily drawing to win
a Callaway Strata Plus Men’s 18-piece golf set AND a Big
Bertha 2014 driver.
Related documents
Getting Started - Microsoft Azure Platform Academic 150 day Pass.ppt
Getting Started - Microsoft Azure Platform Academic 150 day Pass.ppt
Microsoft Dynamics AX Roadmap - The Partner Connections Event
Microsoft Dynamics AX Roadmap - The Partner Connections Event
Application software assignment
Application software assignment
Cloud OS Vision Deck Full Version
Cloud OS Vision Deck Full Version
Chapter 1Computer Concept
Chapter 1Computer Concept
Download
advertisement