Securing your Azure Cloud for Healthcare

September 21, 2017

Healthcare organizations are finding it more cost-effective to garner the services of a reputable Cloud Service Provider (CSP) to manage their Azure cloud. Whether the need is to provide managed services for their Azure cloud subscription, or a need to deploy, host and manage the solution over it’s lifespan using the CSP’s subscription, there is peace of mind that their cloud is compliant and secure.

Azure’s IaaS or PaaS cloud platform allows you to quickly create a Windows or Linux server environment with minimal effort and trust that the infrastructure (servers/storage/network) and platform (operating system/database) elements will be available 24×7. But once servers are spun up, application management services are still needed. Project Hosts’ Azure Managed Services with Extended Security fill the current gap that many enterprises and government agencies have in managing critical elements of their Azure deployments:

    Azure Security Management

    Continuous Monitoring & Performance Optimization

    Applications Access & Management,  User Support

Our cloud security experts have the expertise and compliance competency for today’s most rigorous cloud security standards including ISO 27001, NIST 800-53, HIPAA / HITRUST, FedRAMP Moderate, High,  and DoD CC SRG IL4/5.

Note: Government security standards such as FedRAMP/DoD are only available in a Project Hosts’ subscription.

HIPAA/HITRUST Compliant Clouds

Secure Azure Services

Secure SharePoint on Azure

Share Point FedRAMP Cloud

CRM Custom Cloud

CRM FedRAMP Cloud

PPM Custom Cloud

PPM FedRAMP Cloud

Remote SharePoint Administrator

Azure Managed Services

 


Understanding the FedRAMP Control Families ( Video Series with Project Hosts)

May 9, 2017

Project Hosts has recently released a series of 17 videos that outline the security controls required for FedRAMP compliance of an environment built on Microsoft Azure.  IaaS/PaaS services like Microsoft Azure take care of 25-30% of all required FedRAMP security controls, but the remaining 70-75% still need to be put in place.  In the series, Project Host CEO Scott Chapman addresses each control family, describing in detail what needs to be implemented above Azure for ISVs who sell to the Federal Government or for Agencies who would like to move applications to the cloud.

FedRAMP_Video_Series

In the series, Project Host CEO Scott Chapman addresses each control family, describing in detail, what needs to be implemented above Azure for ISVs who sell to the Federal Government or for Agencies who would like to move applications to the cloud.

Our Federal Private Cloud for Windows and Linux Applications (FPC) provides cloud-based access to Microsoft applications including SharePoint, Project Server, Dynamics CRM, Power BI, Visual Studio, TFS, Remote Desktop, and Office; applications from other commercial software vendors such as AvePoint, BrightWork, Gimmal, Innovative-e, Nintex, UMT360, and Urban Turtle; and open source applications such as Drupal, WordPress and Joomla for agency website content management.   A hybrid cloud architecture allows agencies to leverage shared services for some functions (e.g. authentication, monitoring, scanning) while still having the option to choose dedicated servers for applications and databases. This series of videos offers some insight into the controls that make all of this possible.

Click here for more information about FedRAMP SaaS Compliant Solutions.

Secure Azure Services

Secure SharePoint on Azure

Share Point FedRAMP Cloud

CRM Custom Cloud

CRM FedRAMP Cloud

PPM Custom Cloud

PPM FedRAMP Cloud

Remote SharePoint Administrator

Azure Managed Services


Not all Cloud Service Providers (CSPs) are Created Equally

October 18, 2016

Scott-Chapman-SecureCloudServicesWhen considering a Cloud Service Provider (CSP) to host and/or manage your cloud environment, there are several important questions to consider. Will your CSP improve security? Will your CSP provide an uptime guarantee over 99%? And what kind of customer support can I expect from my CSP?

Security is a service that can be detected through the various compliances a CSP carries. FedRAMP compliance, for instance, takes all of the security requirements government agencies have to follow for their conventional IT systems and “extends those controls specifically for cloud computing,” says Melvin Greer, a chief strategist at Lockheed Martin. More important, “FedRAMP has codified security,” Greer says. “It has detailed what we mean when we say cloud security.” It also makes it easier for acquisition staffs to buy cloud services because “they can be assured services from FedRAMP-approved providers will meet all of their requirements.

Project Hosts, an industry leading CSP, takes great pride in architecting each environment for a customer’s particular business and technology needs, ensuring that your application needs are fully met, and providing your technical team or consulting partner with the access and controls they need. As part of our hosting practice we operate as your virtual IT department and provide the following services.

Hosting Services

  • Supply hosted environment hardware and software or host in your Azure-based environment
  • Provide all software licenses, or purchase application licenses yourself
  • Provision (deliver) the environment; including a portal to simplify user management
  • Add, or provide you or your partner with the control to add Apps, add-ons or custom code
  • Meet and maintain necessary levels of security
  • Ensure 24×7 availability, backed our uptime guarantee of 99.9%
  • Provide 24×7 monitoring and alerts of your environment
  • Provide ongoing maintenance and support of hardware
  • Provide ongoing maintenance, support and version management of software
  • Managing all backups and ensuring a full Disaster Recovery plan
  • Provide the human touch with our Person-2-Person Support

persoon-to-person-supportPerson-2-Person support in this day and age is a luxury many companies, in general, no longer provide. Imagine, a renowned services team and technical organization at-the-ready in the event you have problems. The peace of mind that you won’t be dealing with some nameless/faceless web robot, you’ll have a real person respond to you.

Contact Project Host with any questions that you might have regarding a Cloud Service Provider and your particular needs.

Secure Azure Services

Secure SharePoint on Azure

Share Point FedRAMP Cloud

CRM Custom Cloud

CRM FedRAMP Cloud

PPM Custom Cloud

PPM FedRAMP Cloud

Remote SharePoint Administrator

Azure Managed Services


A FedRAMP Compliant Cloud offers Military Grade Data Security for the Public Sector

July 13, 2016

FedRAMP_Security_NotFedRAMP recently announced the High Security Baseline, allowing Cloud Service Providers (CSPs) to provide high-level security environments for federal agencies looking to leverage the cloud. The private sector is now seeking FedRAMP level compliance to protect and secure critical business data and assets.

Enterprise security professionals are now requiring a commercial FedRAMP compliant cloud solution that can not only protect their critical data assets but also protect:

  • Information about mid-range to long-range strategic plans
  • Information that includes IP (Intellectual Property) and researching findings
  • Information that could lead to lost sales
  • Information that could lead to financial or regulatory penalties
  • Information that could result in severe damage to the company’s value or reputation
Fedramp-managed-services

Project Hosts Federal Private Clouds

The the rise of public cloud security breaches, protecting ones critical data assets with a FedRAMP compliant cloud solution in Azure is a simple assurance of true security. Private enterprises are now defining their “information security levels” and specifying the level of security required for each of their cloud-based applications an associated data. In the same fashion that FedRAMP classifies information security levels for confidentiality, integrity and availability into “low impact,” “moderate impact,” and “high-impact,” categories, private enterprises are doing the same.

SharePoint Custom Cloud

Share Point FedRAMP Cloud

CRM Custom Cloud

CRM FedRAMP Cloud

PPM Custom Cloud

PPM FedRAMP Cloud

Remote SharePoint Administrator

Azure Managed Services

 

 


FedRAMP goes live with High Security Baseline

June 23, 2016

Today, the Federal Risk and Authorization Management Program (FedRAMP) announced the FedRAMP High Security Baseline. The importance of this is significant, as stated in today’s FedRAMP announcement: “These security requirements will be used to protect some of the government’s most sensitive, unclassified data in cloud computing environments. This release allows agencies to use cloud environments for high-impact data, including data that involves the protection of life and financial ruin.”

With this announcement, Cloud Service Providers (CSPs) have a high-level security model to offer federal agencies. Prior to the new baseline, federal agencies could only migrate low and moderate impact data into the cloud. With this release, government agencies can now leverage the cloud for their most critical data through High Security Baseline CSPs.

Microsoft Azure is one of three CSPs currently with provisional authority to operate from the FedRAMP Joint Authority Board or JAB. Under the new baseline, CSP data centers must be secured to the levels mandated for unclassified data in cloud environments, outlined by the Federal Information Processing Standard, or FIPS.  Project Hosts’ Federal Private Cloud, a FedRAMP SaaS-level cloud with an agency ATO, is currently certified at the Moderate level, and with this announcement has started the process to gain a High Security Baseline. Specific details on the expected availability of this capability will be announced at a later date.

Click for additional information about Project Hosts’ Federal Private Cloud


DocPoint Brings Project Hosts’ FedRAMP Cloud Solutions & Services onto GSA Schedule 70

April 28, 2016

Today, our partner DocPoint Solutions, Inc., a leader in the implementation, customization, training and support of SharePoint solutions and its integrated suite of products, announced that they have brought our  Federal Private Cloud (FPC) cloud solutions to onto their General Services Administration (GSA) Schedule 70. Through this partnership, DocPoint will be able to promote and sell FedRAMP SaaS-level compliant cloud solutions as part of a complete enterprise content management (ECM) system.

DocPoint-Graphic

Scott Swidersky, president of DocPoint Solutions, said, “Like companies in the commercial sector, government agencies are turning to cloud-based solutions to promote information sharing across the enterprise in a more cost-effective, scalable manner. However, federal organizations must comply with strict standards to safeguard data and prevent security breaches. With Project Hosts on our GSA Schedule 70, we can offer these clients a complete, secure and compliant ECM solution in the Microsoft Azure Government cloud.”

Project Hosts’ FPC for Windows and Linux Applications provides cloud-based access to Microsoft applications including SharePoint, Project Server, Dynamics CRM, Power BI, Visual Studio, TFS, Remote Desktop, and Office; applications from other commercial software vendors such as AvePoint, Gimmal, Innovative-e, Nintex, eSignLive, UMT360 and more; and open source website content management applications such as Drupal, WordPress and Joomla.

With Project Hosts’ cloud solutions and services on DocPoint’s GSA Schedule 70, federal agencies and government organizations have the benefit of turning to a single entity for a secure, compliant and cost-effective ECM solution that improves productivity, efficiency and enterprise-wide collaboration.

 

 


FedRAMP Compliant Websites Powered by Drupal, Joomla! and WordPress

February 15, 2016

FedRAMP-Websites2More great news for our U.S. federal and state agency customers –  today we announced that our FedRAMP SaaS-compliant Federal Private Cloud now supports websites powered by content management systems from Drupal, Joomla! and WordPress.

This means that U.S. federal and state government agencies can now quickly and easily create and manage their websites while having complete assurance that they are fully secured and meet all of the GSA’s FedRAMP SaaS-level compliance controls.

“If you’re an agency who needs to build and maintain a FedRAMP compliant website using Drupal, Joomla! or WordPress, we have exactly what you need,” said Scott Chapman, CEO and co-founder of Project Hosts. “Unlike FedRAMP Infrastructure-as-a-Service (IaaS) website offerings where you still have to put in place and manage all of the scanning, patching, log correlation, intrusion detection, incident response and other security services required for FISMA compliance, our FedRAMP SaaS-level compliant websites allow you to focus on your website content and leave all of those security controls to us.”

Need to know more?  Follow these links….

FedRAMP Compliant Website / CMS Tools

FedRAMP Compliant Cloud Services (Applications)

FedRAMP ISV Program

FedRAMP SharePoint Pricing

FedRAMP Dynamics CRM Pricing

FedRAMP Project Server Pricing 


%d bloggers like this: