With that in mind, Microsoft has added two new offerings to the Office 365 for Government portfolio that are aligned to FedRAMP (NIST 800-53 rev4) and the DoD Cloud Computing (CC) Security Requirements Guide (SRG) v1.2. The portfolio is:
- New - Office 365 US Government Defense – FedRAMP and DoD CC SRG L5 – aligned to US Defense
- New - Office 365 US Government Defense Contractors – FedRAMP and DoD CC SRG L4 – aligned to US Defense Industry
- Office 365 US Government – FedRAMP and DoD CC SRG L2 – solution is aligned to US Federal Civilian, State, Local and Tribal Government.
Announcement - https://blogs.office.com/2016/10/18/how-the-office-365-us-government-cloud-meets-the-regulatory-and-compliance-needs-of-the-department-of-defense/
If you are unfamiliar with the DoD CC SRG – here is a reference to it - http://iase.disa.mil/cloud_security/Pages/index.aspx