Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Initial Azure Policy selection for SCCA compliance #132

Closed
brooke-hamilton opened this issue Mar 29, 2021 · 3 comments
Closed

Initial Azure Policy selection for SCCA compliance #132

brooke-hamilton opened this issue Mar 29, 2021 · 3 comments
Assignees
Labels
core New feature or request

Comments

@brooke-hamilton
Copy link
Contributor

Benefit/Result/Outcome
So that compliance is as automatic and unattended as possible.

Description
Select existing Azure Policies that apply to the SCCA controls. Identify which controls each policy applies to. It is also fine to add additional policies that apply to other compliance frameworks if we identify which ones they apply to.

Acceptance Criteria

  • A set of default policies is included in the Mission LZ deployment.
  • A markdown document exists in the docs folder that defines how each policy applies to SCCA controls or other control frameworks.
@brooke-hamilton brooke-hamilton added core New feature or request persona: IT admin labels Mar 29, 2021
@brooke-hamilton brooke-hamilton self-assigned this Apr 9, 2021
@brooke-hamilton
Copy link
Contributor Author

No relevant policies

@brooke-hamilton
Copy link
Contributor Author

Based on customer feedback we restarted our efforts to implement policy initiatives.

@shawngib
Copy link
Member

Work items are being created for central logging. Currently Flow logs are set up via individual NSGs to storage accounts in the RGs so it is not a priority to set this up via policy although auditing this will be required. Also further documentation is required to ensure customers comfort level with current policy capabilities and intersection with SCCA requirements.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
core New feature or request
Projects
None yet
Development

No branches or pull requests

2 participants