Scope
This section provides an overview of the scope and concept of operation of system(s) built on ASD's Blueprint for Secure Cloud.
Estimated reading time: 1 minute
While the Blueprint is primarily developed for Australian Government organisations, private sector organisations may also find the Blueprint a useful resource. The Blueprint focuses on providing information, rationale, and configuration settings for Australian hosted services assessed under ASD’s Infosec Registered Assessor Program (IRAP) to enable secure implementation of the following:
- Identity including:
- Microsoft Entra ID (previously known as Azure Active Directory)
- Multi-Factor Authentication (MFA)
- Conditional Access
- Privileged Identity Management
- Microsoft 365 including:
- Exchange Online & Exchange Online Protection
- SharePoint Online
- OneDrive for Business
- Power Platform (Power Automate and Power Apps)
- Microsoft Teams
- Office 365 Applications
- Device management (Intune) including:
- Windows 10
- Windows 11
- iOS
- Connectivity including:
- Cloud to cloud
- Endpoints
- Point to site
- Government to Government (GovLINK)
- Security and Compliance Services including:
- Microsoft Defender:
- Microsoft Defender for Cloud Apps
- Microsoft Defender for Endpoints
- Microsoft Defender for Identity
- Microsoft Defender for Office 365
- Microsoft Defender Vulnerability Management (MDVM)
- Microsoft Information Protection
- Microsoft Purview
- Log Analytics
- Microsoft Defender:
- Automation including:
- Desired State Configuration (DSC)
- Microsoft Graph
- PowerShell
- Support