Obtaining and Maintaining ISO 27001 Compliance through the ISMScloud

August 23, 2016

ISO_ManISVs, government agencies, hosting companies, enterprises and especially IT departments in healthcare, finance and defense industries looking to secure their company’s information management system or gain their ISO 27001 compliance, the ISMScloud just simplified your life. With the ISMScloud, you’ll find it easier to get and continue to maintain your ISO 27001 certification. The system is based on licensed ISO 27001 controls, and helps you manage all the controls, findings and fixes. So whether you’re just starting out on the road to ISO certification, or have been at it for awhile and need a better way to manage the process, we’ve got you covered.

It’s time to stop using archaic, manual tools to manage, document and monitor your controls and related status or fixes required by an auditor’s findings.

  • Secure your information management system
  • Built to get you ISO 27001 Certified
  • Based on ISO 27001 Controls
  • Includes proposed implementation practices
  • Great for first-timers, and those renewing
  • Reduces internal headcount needs

ISMScloudlaunchFor a limited time, the ISMScloud.com is offering a Free Trial to organizations seeking their ISO 27001 certification. Contact info@ismscloud.com for more information.


Managing the ISO 27001 process is made easy through the ISMS Cloud

August 11, 2016

ISMS_ArtGovernance, Compliance and Risk (GRC) professionals seeking to acquire and/or maintain ISO 27001 certification can now easily and effectively manage the process. The ISMScloud has removed reliance on primitive tools like spreadsheets, documents and folders independently stored across multiple servers or computers. The system’s built-in document manager is built on SQL and can also leverage SharePoint, and gives you the ability to relate multiple documents to specific controls and track changes within the system. This makes organizing, finding and fixing changes easier than ever before.

ISMScloudlaunchWith the ISMScloud you’ll find it easier to get, and continue to maintain your ISO 27001 certification. The system is based on licensed ISO 27001 controls, and helps you manage all controls, findings, preventive and corrective actions. So whether you’re just starting out on the road to ISO certification, or have been at it for a while and need a better way to manage the process, we’ve got you covered. Visit: ISMScloud.com for more information. Feel free to contact me directly with any questions.

 


In one word-here is the solution to the DNC’s hacked email server

August 3, 2016

PrintThe recent DNC hack has not only brought to light the questionable behavior within the DNC, but a lack of server security as well. FedRAMP, the Federal Risk and Authorization Management Program is a government-wide program that provides a standardized approach to security assessment, authorization and continuous monitoring for cloud products and services. CSPs with FedRAMP compliance provide 370 security controls necessary to carry such distinction.

Security_Services

Information Security Levels

While the DNC is not a federal agency, FedRAMP standards are now available to State and Local Government agencies as well as the Public Sector. Based on the NIST baseline controls defined in NIST SP 800-53 rev4 for low and moderate systems, FedRAMP brings this security standard into the cloud, enabling organizations to essentially comply with NIST security standards by way of FedRAMP compliant community/private cloud environment. Take a look at these security services here.

FedRamp Commercial

Hosting Services Options

FedRAMP Cloud Solutions

 


Extending Cloud Security in Microsoft Azure

July 25, 2016

Azure-Managed-Services2You just can’t discuss cloud computing without also discussing cloud security. Today’s leading enterprises and IT professionals understand the benefits of moving to an Azure cloud, but they also want to ensure their business assets and employee data is safe and secure. To meet their security needs, many are working with reputable Cloud Service Providers (CSPs) who can customize their environment, provide a seamless migration from an on-premises solution, and lock down and secure their Microsoft’s Azure cloud deployment.

While Microsoft Azure is an exceptional cloud platform that lets you spin-up new Windows Server-based application deployments with minimal effort, many companies are finding it necessary to ensure that their Azure deployment also meets their required security standards, policies and even gain their security certifications.

DL_YouTube_Graphic

Project Hosts’ Cloud Engineer, David Lewis, Discusses Microsoft Azure Security

If you are considering the Azure cloud platform for your applications and data – you have made the right decision. Whether you are all-in with a private cloud environment or you use a hybrid model that communicates flawlessly with your on-premises solutions, securing your Azure environment is essential. Take two minutes to watch this video about  securing your Azure deployment  for a few things you should know about Azure cloud security.

Secure Azure Services

Secure SharePoint on Azure

Share Point FedRAMP Cloud

CRM Custom Cloud

CRM FedRAMP Cloud

PPM Custom Cloud

PPM FedRAMP Cloud

Remote SharePoint Administrator

Azure Managed Services


A FedRAMP Compliant Cloud offers Military Grade Data Security for the Public Sector

July 13, 2016

FedRAMP_Security_NotFedRAMP recently announced the High Security Baseline, allowing Cloud Service Providers (CSPs) to provide high-level security environments for federal agencies looking to leverage the cloud. The private sector is now seeking FedRAMP level compliance to protect and secure critical business data and assets.

Enterprise security professionals are now requiring a commercial FedRAMP compliant cloud solution that can not only protect their critical data assets but also protect:

  • Information about mid-range to long-range strategic plans
  • Information that includes IP (Intellectual Property) and researching findings
  • Information that could lead to lost sales
  • Information that could lead to financial or regulatory penalties
  • Information that could result in severe damage to the company’s value or reputation
Fedramp-managed-services

Project Hosts Federal Private Clouds

The the rise of public cloud security breaches, protecting ones critical data assets with a FedRAMP compliant cloud solution in Azure is a simple assurance of true security. Private enterprises are now defining their “information security levels” and specifying the level of security required for each of their cloud-based applications an associated data. In the same fashion that FedRAMP classifies information security levels for confidentiality, integrity and availability into “low impact,” “moderate impact,” and “high-impact,” categories, private enterprises are doing the same.

SharePoint Custom Cloud

Share Point FedRAMP Cloud

CRM Custom Cloud

CRM FedRAMP Cloud

PPM Custom Cloud

PPM FedRAMP Cloud

Remote SharePoint Administrator

Azure Managed Services

 

 


3 Reasons SharePoint Professionals, Developers and Administrators are Migrating to 2016

July 7, 2016

SharePoint2016-upgrade-programFrom our discussions with SharePoint professionals, developers, and administrators, here are the top three reasons why organizations are migrating to SharePoint 2016:

1.       Your SharePoint farm is simply… OLD!   It’s time to upgrade those antiquated 2007 and 2010 deployments to a new SharePoint 2016 platform – either SharePoint Online or SharePoint in Azure.  Even SharePoint 2013 users will gain tremendous benefits by moving to 2016.

2.       HYBRID is the new on-prem!  That’s right, the on-premises folks have realized that managing their own server farms is just too much work without reward, so they’re leveraging Azure.

3.       Apparently, SECURITY matters to a lot of people!  Especially to enterprise customers and government agencies who want to protect and secure their data assets in SharePoint.

Stock_Amanda_Brent_David_Sign_SharePointSure – there are a lot of other great reasons to migrate and upgrade, but these are the top 3 we regularly encounter.  If you have questions click on the following links to learn more about SharePoint Security, SharePoint Upgrades, and SharePoint Clouds for Government agencies  – including federal, state, and local.

Interested in moving, but don’t know where to begin – talk to us.  We’ve got the dedicated personnel, experience and flexible deployment and managed services plans to get you there quickly, and keep you up and running effortlessly. We’re Project Hosts, a leading CSP (Cloud Service Provider) with more than 13 years of experience in delivering cloud hosting and managed services for Microsoft solutions, with a specialization in SharePoint.

SharePoint Custom Cloud

Share Point FedRAMP Cloud

Azure Managed Services


FedRAMP goes live with High Security Baseline

June 23, 2016

Today, the Federal Risk and Authorization Management Program (FedRAMP) announced the FedRAMP High Security Baseline. The importance of this is significant, as stated in today’s FedRAMP announcement: “These security requirements will be used to protect some of the government’s most sensitive, unclassified data in cloud computing environments. This release allows agencies to use cloud environments for high-impact data, including data that involves the protection of life and financial ruin.”

With this announcement, Cloud Service Providers (CSPs) have a high-level security model to offer federal agencies. Prior to the new baseline, federal agencies could only migrate low and moderate impact data into the cloud. With this release, government agencies can now leverage the cloud for their most critical data through High Security Baseline CSPs.

Microsoft Azure is one of three CSPs currently with provisional authority to operate from the FedRAMP Joint Authority Board or JAB. Under the new baseline, CSP data centers must be secured to the levels mandated for unclassified data in cloud environments, outlined by the Federal Information Processing Standard, or FIPS.  Project Hosts’ Federal Private Cloud, a FedRAMP SaaS-level cloud with an agency ATO, is currently certified at the Moderate level, and with this announcement has started the process to gain a High Security Baseline. Specific details on the expected availability of this capability will be announced at a later date.

Click for additional information about Project Hosts’ Federal Private Cloud


Follow

Get every new post delivered to your Inbox.

Join 398 other followers

%d bloggers like this: