ASD - Australian Signals Directorate

ASD's Blueprint for Secure Cloud

Compliance Manager

This section describes the design decisions associated with Compliance Manager with Microsoft Purview for system(s) built using ASD's Blueprint for Secure Cloud.

Estimated reading time: 1 minute

Compliance Manager helps automatically assess and manage compliance across Microsoft 365 services, apps and endpoints by assessing their configurations against common industry standards and regulations. These standards and regulations are implemented as assessments that are comprised of a set of requirements, known as controls, that relate to specific configurations. Controls are described alongside improvement actions to address configuration compliance, with compliance status being reported and alerts able to be generated for configuration changes.

Assessments exist for many different Australian and international standards and regulations, including for ASD’s Essential Eight Maturity Model and Information Security Manual (ISM), and while both assessments are based on older frameworks they still provide significant and relevant compliance advice and so are recommended for implementation.

Security & Governance

  • None identified

Design

  • None identified

Configuration

References

Do you have a suggestion on how the above page could be improved? Get in touch! ASD's Blueprint for Secure Cloud is an open source project, and we would love to get your input. Submit an issue on our GitHub, or send us an email at blueprint@asd.gov.au

Acknowledgement of Country icon

Acknowledgement of Country
We acknowledge the Traditional Owners and Custodians of Country throughout Australia and their continuing connections to land, sea and communities. We pay our respects to them, their cultures and their Elders; past, present and emerging. We also recognise Australia's First Peoples' enduring contribution to Australia's national security.

Authorised by the Australian Government, Canberra