Microsoft has released the UK OFFICIAL blueprint as part of its Azure Blueprint service for key compliance standard to the G-Cloud and NHS Information Governance. This service enables us, as a Crown Commercial Supplier, to more securely set up a governed Azure environment that can scale up for large-scale migrations.
The Government-Cloud (G-Cloud) standard and National Health Service (NHS) Information Governance of the United Kingdom is an initiative which enables further adoption of cloud services by the public sector. The G-Cloud standard contains Fourteen Cloud Security principles that all public sector areas must adhere by when using the cloud.
The new blueprints map a set of Azure policies to appropriate G-Cloud and NHS Information Governance controls for any Azure deployed architecture.
The UK Official Azure Blueprint
The UK OFFICIAL includes mappings to the following Cloud Security Principles (of which there are fourteen).
- Data in transit protection.
- Data at rest protection (asset protection and resilience).
- Operational security.
- Secure user management.
- Identity and authentication.
- External interface protection.
- Secure Service Administration.
- Audit Information for Users.