Beruflich Dokumente
Kultur Dokumente
Industry In FY15, Government, Public Safety and National Security, Healthcare, and
Growth Education industries are present in 238 countries accounting for $44.1B of
cloud-transformation products and services deployed both on and off
premises. This market is projected to grow to $53.7B in FY18 (IDC)
Synergistic Experience with Azure Government and many of our local datacenters shows
Growth that not only do customers purchase a sovereign or local service, but we also
see an increase in sale of our commercial offering by the same set of
customers.
Engage your Transform your
customers products
Digital
Transformation
3
Cloud momentum continues to accelerate
By 2020, a corporate no-cloud The question is no longer: By 2020 clouds will stop being
policy will be as rare as a How do I move to the cloud? referred to as public and
no-internet policy is today1 Instead, its Now that Im in the private. It will simply be the
cloud, how do I make sure Ive way business is done and IT
optimized my investment is provisioned. 3
and risk exposure? 2
1Gartner: Smarter with Gartner, Why a No-Cloud Policy Will Become Extinct, February 2, 2016
2KPMG: 2014 Cloud Survey Report, Elevating business in the cloud, December 10, 2014
3IDC: IDC Market Spotlight, Cloud Definitions and Opportunity, April 2015
4
Compliance & data residency a key factor in cloud adoption
Security and privacy are stated most important considerations while compliance
drives behavior
Top 20 Customer Requirements Related to Trust
3000 customers were asked
to rank their top 20 Security
requirements related to
1 2 3
cloud trust
Compliance
United Kingdom
South
North Central US
Southeast
Asia
100 + datacenters
One of 3 largest networks in the world
Brazil South
Australia East
*Operated by 21 Vianet
**German data trustee services Australia Southeast
provided by T-systems
6
Industrys largest compliance portfolio
Microsoft is meeting customer security needs with the industry's largest compliance portfolio
Worldwide
China Multi
HIPAA / European Union ENISA China China Singapore Australian Signals New Zealand Japan
Layer Protection
HITECH Model Clauses IAF GB 18030 CCCPPF MTCS Level 3 Directorate GCIO Financial Services
Scheme
Government
Section 508 United Kingdom FedRAMP FIPS 140-2 21 CFR FERPA DISA Level 2 CJIS IRS 1075 ITAR-ready
VPAT G-Cloud JAB P-ATO Part 11
7
Investments to address business and regulatory needs
Infrastructure geo-expansion helps address some common cloud blockers for
many geographies and industries.
Data Local datacenters allow customer data at rest to be kept within a geography,
Residency enabling customers to help meet local data residency requirements*
Local datacenters can help reduce latency for developers and partners,
Performance fueling local innovation
8
The cloud is a model, not just a place
The cloud operating model prioritizes speed and empowers developers. Hybrid cloud allows the model to
be utilized consistently across public, partner, and private cloud environments, providing ultimate
flexibility.
Public Private
Hybrid
9
How do I determine the best fit for my needs?
There are a set of core factors to take into account when determining the best option(s) to meet
your needs
Compliance Cost
What are the compliance requirements that I need
Is price a major factor in your decision making process?
to abide by?
Eligibility Latency
Is lightning speed performance crucial to my business or
Which datacenters am I eligible to use?
industry?
10
What is cloud data governance and why is it important?
Cloud data governance drives business transformation, agility, and collaboration, to
increase your competitive advantage
What it is
A set of processes and controls for managing data by harnessing the power
of the cloud
11
Five Steps to Data Governance Adoption
Define business
objectives
1
Operationalize
data strategy
and implement 5 Develop
2 data strategy
change control
process and policy
4 3
Jeff Parsons
EVP of Global Business
Azzimov
13
We chose Microsoft Cloud, Germany
because with it we have all the benefits
and advantages of the highly scalable
Azure Cloud and it is the only
Hyperscaler capable of meeting our
strict demands regarding German
privacy protection. Servers based in
Germany paired with the trustworthy
and reliable server management
carried out by T-Systems were the two
key deciding factors for us.
Detlef Schmuck
COO
TeamDrive
14
For Memphis Police Department we
delivered the fast and scalable Getac
Veretos Evidence Management System
that supports CJIS security policies. In
many cases, data moves seamlessly
from the officer and the vehicle directly
to the Azure Government Cloud. This
streamlined, secure hosted model
eliminates many of the hidden costs
and processes associated with running
an internal network infrastructure.
Scott Shainman
President North America
Getac
15
Resources
Microsoft Datacenters
16
Azure geographic views
Azure regions in the United States
Global offerings
Sovereign
Central US
Microsoft Cloud for Government
West Central US North Central US
US Gov Data is stored within the U.S. and provides a physical and network-isolated
instance of Microsoft Azure
US DoD
West Provides screened U.S. persons and policies to help protect customer data and
East US applications
Offers continuous commitment to meet rigorous compliance demands
East US 2 (i.e. FedRAMP, CJIS, HIPAA) of a government-community cloud
US Gov
Microsoft Cloud U.S. Dept. of Defense*
US DoD East
Two new physically isolated Azure Government regions for Department of
South Central US
Defense
First of a kind, datacenters are architected to meet stringent DoD security
controls and compliance requirements
Designed to meet specific controls and commitments defined in the DoD
Cloud Computing Security Requirements Guide (SRG) that require the specific
engineering controls in place for data permitted to be stored in the cloud
*DoD datacenters have been announced but are not yet operational
For updated compliance information visit the Microsoft Trust Center. For data residency details, see http://azuredatacentermap.azurewebsites.net/. 19
Making the right choice in the United States
Compliance in the United States
ISO/IEC ISO/IEC NIST Microsoft Azure is well known for its industry-leading security and
PCI-DSS 27001 27018 MPAA 800-171
reliability and, with it, we can provide the most secure and compliant
cloud capability to our customers.
Rick Smith
CEO
Shared Section TASER
SOC 1 SOC 2 SOC 3
Assessments 508 VPATs
In working with law enforcement, we need to meet several security
Federal Government Compliance and privacy standards - particularly CJIS. Microsoft Azure and Azure
Government are the only major platforms that meet those
standards.
Ken Smith
Founder/Head of Product
Rejjee
HIPAA/ FDA 21 CFR
CJIS FedRAMP IRS 1075 DISA FISMA
HITECH Part 11
Canada
Microsoft Azure is generally available from two local datacenter regions
Data replication occurs within Canada for business continuity
Customer data at rest is kept within Canada, enabling customers to address
most local data residency requirements
Open to all public cloud users
Azure regions can be selected, including access to WW regions
Canada East
Canada Central
For updated compliance information visit the Microsoft Trust Center. For data residency details, see http://azuredatacentermap.azurewebsites.net/.
21
Making the right choice in Canada
Compliance in the Canada
We encourage innovation and we are excited to be taking
advantage of the newly opened Microsoft Canadian datacenter
where we will begin moving more than 35,000 users to the Microsoft
Canadian cloud over the coming years.
ISO/IEC ISO/IEC
CDS CSA CCM MPAA
27001 27018 Labi Kousoulis
Minister Internal Services
Province of Nova Scotia
Europe
Globally connected cloud services deployed from regional Microsoft datacenters in
Europe
Complies with EU model clauses 2010/87/EU
Microsoft was the first hyperscale cloud service provider to receive Spain's Esquema
Nacional de Seguridad (National Security Framework) certification
United Kingdom
Customer data at rest is kept within the UK, enabling customers to address most local
North Europe data residency requirements**
Complies with EU model clauses 2010/87/EU
For updated compliance information visit the Microsoft Trust Center. For data residency details, see http://azuredatacentermap.azurewebsites.net/.
23
Making the right choice in Europe
Compliance in the Europe
ISO/IEC Shared
MPAA PCI-DSS SOC 3
27018 Assessments
SOC 2 SOC 1
Regional Compliance
EU Model
Spain ENS UK G-cloud FACT
Clauses
Asia
Data replication occurs; between two datacenter regions within Asia
Achieved MTCS T3
Open to all public cloud users
South Korea*
New datacenter announced May 2016, not yet operational
Customer data at rest will be kept within South Korea, with the goal of meeting the requirements of the Korean Cloud Computing
Related Regulation and Standards, such as Cloud Computing Act and Data Protection Standards for Cloud Computing Services
Japan East Will be open to all public cloud users
Korea Central
China West* Japan
Data replication between two local datacenter regions
Japan West
Customer data at rest is kept within Japan, enabling customers to address most local data residency requirements.
China East* Korea South
Microsoft has been accredited by JASA on Cloud Security Mark Gold, while meeting requirements from FISC and My Number Act
Open to all public cloud users
Azure regions can be selected, including access to WW regions
East Asia
Sovereign offerings
For updated compliance information visit the Microsoft Trust Center. For data residency details, see http://azuredatacentermap.azurewebsites.net/.
*South Korea datacenters have been announced but are not yet operational 25
Making the right choice in Asia
Compliance in Asia
The ultimate goal of driving innovation through cloud services is to reduce the
total cost in business operation and maximize IT efficiency to achieve business
agility. I believe that the expansion of the Microsoft Cloud in Korea will create
ISO/IEC ISO/IEC big momentum for many Korean companies to very actively adopt cloud
CDS CSA CCM MPAA
27001 27018 services.
Chan Park
Chief Technology Officer (CTO),
JYP Entertainment
Shared "The core of cloud service is security. Microsoft Azure is perceived as the trusted
PCI-DSS SOC 3 SOC 2 SOC 1
Assessments cloud service as it has numerous certifications from many international
organizations. I hope the Microsoft announcement today provides Korea with an
Regional Compliance opportunity to increase awareness of the need for security in cloud services.
Asia
Data replication occurs between two datacenter regions in Asia
Achieved MTCS T3
Open to all public cloud users
India
Data replication occurs between two local datacenter regions
Enables data residency for customers in India, including data replication within India
for business continuity
India billing address is required for use
West India
India datacenter infrastructure and facilities operations have been independently
certified under ISO 27001, SOC 1, SOC 2, SOC 3 as well as PCI DSS 3.0
Central India India billing address is required for use
South India
For updated compliance information visit the Microsoft Trust Center. For data residency details, see http://azuredatacentermap.azurewebsites.net/.
27
Making the right choice in India
Regional Compliance
Data residency has been key concern of industry globally due to security and
compliance reasons. Having option of data residing within india and even
having BCP option, opens completely new possibilities for the enterprises which
ISO/IEC ISO/IEC were reluctant so far. This also helps regulated businesses to use hosted solutions
CDS CSA CCM MPAA
27001 27018 which was not as easy earlier.
Dhiren Savla
Chief Information Officers, VFS Global
The launch of Microsofts Dynamics CRM Online in India is fantastic news! India
Shared is a hub to the operations of global companies like ours. And of course, India is
PCI-DSS SOC 3 SOC 2 SOC 1
Assessments fast emerging as a market for next generation companies. The availability of in-
country storage and processing infrastructure will offer better performance,
redundancy, security, and compliance. This will spur greater adoption of cloud
based services across the enterprise software landscape that is shaping the new
Digital India - enabling businesses to offer differentiated user experiences and
new opportunities for growth at optimal cost.
Deepak Padaki
Senior Vice President Strategy & Chief Risk
Officer, Infosys Limited
Asia
Data replication occurs; between two datacenter regions within Asia
Achieved MTCS T3
Open to all public cloud users
Australia
Customer data at rest is kept within Australia, meeting most local data
residency requirements, including Australian government Certified Cloud Services List
To assist agencies, Microsoft New Zealand has produced a series of documents
showing how its enterprise cloud services address the questions in Cloud
Computing ISPC by linking them to the standards against which Microsoft cloud
services are certified
Australia billing address is required for use
Australia East
Australia Southeast
For updated compliance information visit the Microsoft Trust Center. For data residency details, see http://azuredatacentermap.azurewebsites.net/.
29
Making the right choice in Australia
Compliance in Australia
Shared
PCI-DSS SOC 3 SOC 2 SOC 1
Assessments
Regional Compliance
NZCC
Irap
Framework
Brazil South
For updated compliance information visit the Microsoft Trust Center. For data residency details, see http://azuredatacentermap.azurewebsites.net/.
31
Making the right choice in South America
Compliance in the South America
ISO/IEC ISO/IEC
CDS CSA CCM MPAA
27001 27018
Shared
PCI-DSS SOC 3 SOC 2 SOC 1
Assessments
Regional Compliance
Argentina
PDPA