New Azure Blueprint for NIST SP 800-53 R4 now available on Azure Government
Disclaimer: Customers are wholly responsible for ensuring their own compliance with all applicable laws and regulations. Information provided in this post does not constitute legal advice, and customers should consult their legal advisors for any questions regarding regulatory compliance.
Our recently released Azure Blueprint for NIST SP 800-53 R4 is now available in Azure Government.
The National Institute of Standards and Technology (NIST) publishes a catalog of security and privacy controls, Special Publication (SP) 800-53, for federal information systems. Our new NIST SP 800-53 R4 blueprint maps a core set of Azure Policy definitions to specific NIST SP 800-53 controls. For US government organizations and others with compliance requirements based on NIST SP 800-53, this blueprint can help you proactively manage and monitor compliance of Azure resources.
The NIST SP 800-53 R4 blueprint provides governance guardrails using Azure Policy to help customers assess specific NIST SP 800-53 R4 controls. The blueprint includes a a core set of policies that can be assigned to any Azure architecture that must implement these controls. When assigned, Azure resources are evaluated by Azure Policy for non-compliance with assigned policies. A control mapping provide details on policies included within this blueprint and how these policies address various NIST SP 800-53 R4 controls.
Assigning the blueprint is easy – sign in to the Azure portal, search for Blueprints, create a new blueprint, and select the NIST SP 800-53 R4 blueprint template to get started.
Learn more about the blueprint here: https://aka.ms/nist80053-blueprint