shutterstock_184473665.jpg

Summit 7 Team Blogs

Office 365 DFARS Frequently Asked Questions (and Answers) - Part 2

There are a lot of questions surrounding the upcoming DFARS requirements for DoD Contractors. What does it mean for your business? What happens if you're not compliant in time? To help guide you through the process, here are some questions and answers that you may need to know.  Did you miss the first six FAQ's? Check them out here.

DFARS_FAQ_7.png7. Will we receive documentation that we are fully compliant after configuration is completed?

Yes, Summit 7 Systems provides complete documentation for all environments we build and projects that we execute.

 

DFARS_FAQ_8.png

 

8. How can our IT monitor our whole environment if it is in the cloud?

Microsoft provides dozens of monitoring tools to ensure that you have full awareness and that Microsoft is fully transparent with all customer data.

 

DFARS_FAQ_9.png9. We are a federal contractor, but we don’t have any DoD contracts. Do we still need to be DFARS compliant?

Your company is only required to be DFARS compliant if you are a prime or sub-contractor on a contract that includes the applicable DFARS clause 252.204-7012.

 

 

DFARS_FAQ_10.png10. If O365 is accessible anywhere on any device, how can our IT department monitor activity and prevent cyber incidents?

Office 365 has many security, auditing and management tools that can give you full fidelity information on everything that is happening within the Office 365 environment. You can see every email, document or access request to all components of the system.

DFARS_FAQ_11.png11. What’s the difference between O365 and Azure? How do those choices affect by ability to be compliant? Do I need both or either or?

Office 365 is a Software As A Service (SaaS) platform while Azure is a mixture of Infrastructure As A Service (IaaS), Platform As A Service (PaaS) and Software As A Service (SaaS) environments.

Essentially, Office 365 can provide the clear majority of the standard collaboration needs that a company may have, but if you have specific or custom computing requirements, Azure can help you move those existing line of business or other applications to the cloud.


DFARS_FAQ_12.png12. I don’t want to go to the cloud. What are my options of being compliant if I just upgrade to SP2016 on-prem?

SharePoint 2016 and other on premises solutions can be made compliant. However, the process can take significantly more time and expense than moving your IT environment to the cloud. The cloud environments are continually audited to ensure security and compliance with all the relevant standards.

 

This FAQ is part of a series. Be sure to subscribe and get notified when there's a new post, or check back soon for the next post in the series!

New Call-to-action

 

SHARE THIS STORY | |
About Scott Edwards

Scott Edwards is an accomplished computer engineer and organizational leader with experience in business, project management, systems engineering, training and security. Scott’s technical experience was honed at NASA as a Senior Computer Engineer and the Chief Engineer and Engineering Manager for the NASA Datacenter.

Scott received his Bachelor of Science from the United States Military Academy and his Master of Science in Computer Science with an emphasis in Information Assurance at James Madison University. Scott proudly served as an Officer in the US Army Signal Corps with both the 2-227th Aviation Battalion in Bosnia-Herzegovina and the 1-6 Air Defense Artillery Battalion in Fort Bliss, Texas.

Currently, Scott is the President and Managing Partner of Summit 7 Systems. Summit 7 Systems is Service Disabled Veteran Owned Small Business (SDVOSB) and a Microsoft Gold Cloud Productivity Partner that specializes in Office 365 security solutions.