A 60 minute advisory review on types of CUI and Microsoft tools required to protect them under CMMC
Organizations subject to CMMC 2.0 and NIST 800-171 compliance face a number of challenges when determining first steps, strategy and road mapping. This two part engagement begins with a review of the environmental scope and types of Federal Contract Information (FCI) and Controlled Unclassified Information (CUI) present in the organization's current environment to assess which Microsoft Impact (sovereign cloud) is required (ie. Commercial, GCC, or GCC High).
The second part of this session is an technical review of the environment with a Cloud Solution Architect who will help scope out a roadmap for compliance utilizing available Microsoft 365 and Azure solutions including: • Azure Active Directory • Log Analytics Workspace • Azure Sentinel • Multifactor Authentication and Rule Based Conditional Access • Microsoft Information Protection and Data Loss Prevention • Intune for Mobile Device and/or Mobile Application management • Microsoft Compliance Center • Windows 10/11 • Azure Virtual Desktop (or Windows 365 as available) • Azure Arc • Microsoft Defender
As part of this engagement, additional considerations such as Azure infrastructure, content migrations, and in-house line of business apps may be discussed.
This session is delivered as two 30 minute sessions scheduled over a period of 5-10 business days based on client availability.
The deliverable of this engagement is a detailed statement of work including current recommendations and a road map of initiatives towards CMMC and NIST 800-171 compliance. If desired; migration, implementation, and security services may be purchased as a fixed-price / fixed scope project.
Agile IT is a CMMC Registered Practitioner Organization, a four-time Microsoft partner of the year and holds over 15 Gold competencies. We are an AOS-G partner capable of licensing, implementing and managing GCC and GCC High as well as Azure Government.