{"id":20834,"date":"2021-12-07T06:15:05","date_gmt":"2021-12-07T14:15:05","guid":{"rendered":"https:\/\/devblogs.microsoft.com\/azuregov\/?p=20834"},"modified":"2021-12-07T06:11:31","modified_gmt":"2021-12-07T14:11:31","slug":"building-and-monitoring-zero-trust-tic-3-0-workloads-for-federal-information-systems-with-microsoft-sentinel","status":"publish","type":"post","link":"https:\/\/devblogs.microsoft.com\/azuregov\/building-and-monitoring-zero-trust-tic-3-0-workloads-for-federal-information-systems-with-microsoft-sentinel\/","title":{"rendered":"Building and monitoring Zero Trust (TIC 3.0) workloads for federal information systems with Microsoft Sentinel"},"content":{"rendered":"

This blog is co-authored by Lili Davoudian<\/a>, Program Manager II; and TJ Banasik<\/a>, CISSP-ISSEP, ISSAP, ISSMP, Senior Program Manager of Microsoft Cloud & AI Security.<\/em><\/p>\n

\"Image<\/a><\/p>\n

In\u00a0this video<\/span><\/a>, we discuss the new Microsoft Sentinel: Zero Trust (TIC3.0) solution\u202fwhich provides additional functionality to empower US government customers as they incorporate a Zero Trust perspective into their architecture.<\/span><\/p>\n

In addition to design improvements,\u00a0we\u2019ve\u00a0improved the better-together integration with Microsoft Defender for Cloud\u202ffor\u202fassessments and\u202falerting rules to actively monitor and\u00a0alert on\u00a0compliance posture deviations across each\u202fTIC\u00a03.0\u202fcontrol family.\u202f<\/span>\u00a0<\/span><\/p>\n

The solution includes the new Zero Trust (TIC\u00a03.0) Workbook, (11) Analytics Rules, and (1) Playbook; enabling governance and compliance teams to design, build, monitor, and respond to Zero Trust (TIC\u00a03.0) requirements.<\/span>\u00a0<\/span><\/p>\n

We appreciate\u00a0all\u00a0the\u00a0positive feedback\u00a0and\u00a0input\u00a0from the government community\u00a0which resulted\u00a0in\u00a0these\u00a0updates to\u00a0our\u00a0workbook.\u00a0<\/span>Watch our demo<\/span><\/a>\u00a0to learn more.\u00a0<\/span>\u00a0<\/span><\/p>\n

Getting\u00a0started<\/span><\/b>\u00a0<\/span><\/p>\n

In addition to the video,\u00a0we\u2019re sharing\u00a0content designed to provide the foundation for designing, building, and monitoring workload compliance within Zero Trust and TIC\u00a03.0 requirements.\u00a0Here\u00a0are the steps to onboard required dependencies, enable connectors, review content, and provide feedback.\u00a0<\/span>\u00a0<\/span><\/p>\n

1.\u00a0 Onboard: Microsoft Sentinel<\/a>\u00a0and Microsoft Defender for Cloud<\/a><\/p>\n

2.\u00a0 Add the Azure Security Benchmark and NIST SP 800-53 R5 Assessments to your dashboard<\/a><\/p>\n

3.\u00a0 Continuously export Security Center Data to Log Analytics Workspace<\/a><\/p>\n

4.\u00a0 Deploy the Microsoft Sentinel Zero Trust (TIC3.0) solution<\/p>\n