How can we improve Azure Governance?

Azure Policy based on industry governance/compliance frameworks

It would be helpful to take some of the control mapping from blueprints against industry frameworks such as PCI-DSS/NIST/etc and allow you to report compliance against those controls for each of the Azure services that exist in your environment.

Integrating something like cloudsecurityalliance.org control matrix or unifiedcompliance.com would be very helpful.

8 votes
Sign in
(thinking…)
Sign in with: oidc
Signed in as (Sign out)

We’ll send you updates on this idea

Mathew shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

1 comment

Sign in
(thinking…)
Sign in with: oidc
Signed in as (Sign out)
Submitting...
  • Gururaj Pandurangi commented  ·   ·  Flag as inappropriate

    @matthew,
    while not exactly an Azure Policy, but we at www.cloudneeti.com have built a product to visualize and manage compliance at scale for PCI/NIST/CSA/ISO27001/HIPAA etc
    We partner with Azure and many other security and compliance ecosystem partners to pull in information across various Azure and O365 services. Happy to discuss info@cloudneeti.com

Feedback and Knowledge Base