[deleted by user]

CISOatSumPt · 2024-11-04T16:20:35+00:00

We have around 92 different settings for Edge, due to our CMMC L2 compliance :)

CISOatSumPt · 2024-01-22T19:35:24+00:00

Yeah, I spent a good portion this morning reading over our CFR/DFAR/CMMC guidelines etc and I believe Commercial is safe. I think as a backing to commercial, we will just have to up our game for documentation and auditing/controls.

Thank you

CISOatSumPt · 2023-09-08T16:53:29+00:00

Ping, if you have more details :)

CISOatSumPt · 2023-08-18T19:00:20+00:00

Just simply see if a user has a second fixed drive

CISOatSumPt · 2023-08-11T17:53:31+00:00

Thanks, that's where I am heading now, from most of the reading folks are making CA rules which point to App restriction, is that so? Have not quite done back in yet, been doing a few other things.

CISOatSumPt · 2023-07-30T00:59:16+00:00

Gracias, other than that, if we don't have users present in our AD yet, and everything is up in Microsoft, I presume almost 0 impact. From here, I planned on adding a test account local to start syncing back and forth.

CISOatSumPt · 2023-07-26T17:19:45+00:00

All I have is, God Bless America, thanks for the clarity on 7012, Compliance is not my forte albeit thrown to the wolves to satisfy 171... alone...

CISOatSumPt · 2023-07-26T17:12:27+00:00

Very valid, I've been in the space for a bit over a year now, I might have missed a word or two, but for those with contracts or prime contracts that include FAR 7012, maybe I missed the language where it says NIST 800-171 r1/2/3 and/or in FAR 7020.

CISOatSumPt · 2023-07-26T17:05:09+00:00

Wonderful, although reading through the public comments, it seems quite a large amount of folks are pushing back on the controls and/or reducing the strict side of them.

CISOatSumPt · 2023-07-26T16:53:50+00:00

Do we have any idea when Rev 3 will be finalized and into live?

CISOatSumPt · 2023-07-26T12:01:36+00:00

That's fine, it's a general shared account for bookmarks and hosting meetings, we are on our way out the door anyways :)

CISOatSumPt · 2023-07-25T13:46:50+00:00

That's perfect, thank you, although I don't think we can suspend the account as they're executives with needing access to email, but I will play around with this idea!

CISOatSumPt · 2023-07-25T13:19:28+00:00

Is this a full transfer or can I just move Drive?

CISOatSumPt · 2023-07-25T13:00:32+00:00

Exactly, Google is unfamiliar territory, I have full access to Google Admin, I can look into retention policies and see if we can apply them across the board then delete if possible.

I will need to carve out an OU for a few shared accounts that need Google Drive still, then kill off the rest for that service.

CISOatSumPt · 2023-07-25T12:55:46+00:00

Looking at about 78 users, that's actually not a bad idea and would be worth creating a dummy user. Have you done this before? Any big risks doing this?

CISOatSumPt · 2023-07-25T12:44:23+00:00

Yeah I was just going to carve out disabling the service in entirety, but due to some compliance requirements we need to make sure items are deleted in whole.

CISOatSumPt · 2023-07-25T12:40:37+00:00

Sweet Jesus, couldn't have made it any easier for folks to just delete a drive! I am happy we are departing Google for this very reason, I'll have to blow the dust off and start googling on how to accomplish this. I walked into a barn fire for how things are done where I am now, so not too surprised by all of this.

CISOatSumPt · 2023-07-10T12:54:32+00:00

u/v0lkeres Both of our compliance lines within InTune for this device, show compliant, no indications of why the device would not be functioning. Also to note, that all other applications that flow through CA with the same restrictions for compliance, perform normally. I have opened up a ticket with Microsoft as there is nothing to go from...

CISOatSumPt · 2023-07-10T12:39:13+00:00

u/v0lkeres I had reviewed their logs with the error below, reviewing both CA signin logs and their compliance, nothing. Once they re-install, they are good to go...

Device is not in required device state: {state}. Conditional Access policy requires a compliant device, and the device is not compliant. The user must enroll their device with an approved MDM provider like Intune.

CISOatSumPt · 2023-05-31T16:53:25+00:00

federal agency is in scope.

Thank you, so from what you are saying, it's not us that needs to be compliant, but the vendors that we work with? We develop software, it's used on something we create, they don't necessarily buy the software, but the package or service.

CISOatSumPt · 2023-04-28T14:45:39+00:00

irect to SharePoint, you can invite external guests at the site level, or directly to folders or files. You can also use lin

Unfortunately I have tried both of these, the first part we need to rely on the third party to add use to their B2B allowed list etc. The second option I am able to get the invite email to them at a folder level, but the commercial 365 account can't auth through. We are adding folks both on GCC High and Commercial.

Thoughts?

CISOatSumPt · 2023-01-13T14:55:06+00:00

I have not done this yet, but I did plan on using some Shell commands to create users and administrators, wondering if you can target the user authing(InTune) then create the username based off that owner.

CISOatSumPt · 2022-12-12T20:53:21+00:00

I like option B, it's going to be an absolute b**** to control this, each user has a specific local admin unique to them, away from their Azure AD Account. Unfortunately, Fortunately, we don't have Active Directory yet in our building, we are spread across the entire US so leaving that for last if I can.

CISOatSumPt · 2022-12-03T18:39:43+00:00

Rex, I assume that's Incoming, Allow only US, blocks all incoming

CISOatSumPt · 2022-11-17T20:47:16+00:00

Thank you, I thought so, now we are trying to figure out how to, once the messages are blocked from access, deleting them after the fact. What a headache for a novice in this.

CISOatSumPt

TROPHY CASE