Microsoft Compliance Manager - Premium Assessment Add-On Subscription

Product Details: Microsoft Compliance Manager - Premium Assessment Add-On Subscription


Compliance Manager provides a comprehensive set of Premium Assessment Add-On templates, which can help your organisation assess risks and efficiently respond to national, regional and industry-specific requirements governing the collection and use of data.Microsoft Compliance Manager is a feature in the Microsoft 365 compliance center that helps you manage your organisation’s compliance requirements with greater ease and convenience. Compliance Manager can help you throughout your compliance journey, from taking inventory of your data protection risks to managing the complexities of implementing controls, staying current with regulations and certifications, and reporting to auditors.

Compliance Manager helps simplify compliance and reduce risk by providing:

Pre-built assessments for common industry and regional standards and regulations, or custom assessments to meet your unique compliance needs (available assessments depend on your licensing agreement; learn more).

Workflow capabilities to help you efficiently complete your risk assessments through a single tool.

Detailed step-by-step guidance on suggested improvement actions to help you comply with the standards and regulations that are most relevant for your organisation. For actions that are managed by Microsoft, you’ll see implementation details and audit results.

A risk-based compliance score to help you understand your compliance posture by measuring your progress in completing improvement actions.

Your Compliance Manager dashboard shows your current compliance score, helps you see what needs attention, and guides you to key improvement actions

Compliance Manager provides templates to help you quickly create assessments. You can modify these templates to create an assessment optimized for your needs. You can also build a custom assessment by creating a template with your own controls and actions. For example, you may want a template to cover an internal business process control, or a regional data protection standard that isn’t covered by one of our 325+ pre-built assessment templates.

One or more of these templates will be available based on your licensing agreement. The Data Protection Baseline template is included for all users.

Microsoft Data Protection Baseline
European Union GDPR (Microsoft 365, Office 365, Intune)
ISO/IEC 27001:2013
NIST 800-53 Revs. 4 and 5

The Premium templates are:-

Global
Guidelines and Functional Requirements for Electronic Records Management Systems (ICA Module 2) (Microsoft 365)
ISO 15489-1:2016 (Microsoft 365)
ISO 16175-1:2020 (Microsoft 365)
ISO 19791 - Information technology — Security techniques — Security assessment of operational systems (Microsoft 365)
ISO 22301:2019 (Microsoft 365)
ISO 23081-1:2017 (Microsoft 365)
ISO 27005:2018 (Microsoft 365)
ISO 27017:2015 (Microsoft 365)
ISO 27034-1 Information technology — Security techniques — Application security (Microsoft 365)
ISO 27799: 2016, Health informatics — Information security management in health (Microsoft 365)
ISO 28000 – Specifications for Security Management Systems for the Supply Chain (Microsoft 365)
ISO 31000:2018 (Microsoft 365)
ISO 55001 – Asset management -- Management systems--Requirements (Microsoft 365)
ISO IEC 80001-1:2010 (Microsoft 365)
ISO/IEC 27001:2013
ISO/IEC 27018:2019 (Microsoft 365)
ISO/IEC 27033-1:2015 (Microsoft 365)
ISO/IEC 27701:2019 (Microsoft 365)
System and Organization Controls (SOC) 1
System and Organization Controls (SOC) 2
Industry
AICPA/CICA Generally Accepted Privacy Principles (GAPP) (Microsoft 365)
ARMA - Implementing the Generally Accepted Record Keeping Principles (GARP) (Microsoft 365)
CDSA Content Protection & Security Standard (Microsoft 365)
CIS Implementation Group 1, Group 2, Group 3
CIS Microsoft 365 Foundation Level 1 and 2
Cloud Security Alliance (CSA) Cloud Controls Matrix (CCM)
COBIT 5 (Microsoft 365)
FINRA Cybersecurity Checklist (Microsoft 365)
ITU X.1052 Information Security Management Framework (Microsoft 365)
Joint Commission Information Management Standard (Microsoft 365)
Motion Picture Association (MPA) Content Security Best Practices (Microsoft 365)
NERC CIP (Microsoft 365)
SWIFT Customer Security Controls (Microsoft 365)
OWASP ProActive Controls for Developers 2018 v3.0 (Microsoft 365)
(NAIC) Standards for Safeguarding Customer Information Model Regulation MDL-673
PCI DSS v3.2.1 (Microsoft 365)
Privacy of Consumer Financial and Health Information Regulation, NAIC MDL-672, Q2 2017 (Microsoft 365)
Revisions to the principles for the sound management of operational risk (Basel III Ops Risks) (Microsoft 365)
Standardized Information Gathering (SIG) Questionnaire (Microsoft 365)
Trusted Information Security Assessment Exchange

Premium templates
These templates may be purchased by your organisation.

Global
Guidelines and Functional Requirements for Electronic Records Management Systems (ICA Module 2) (Microsoft 365)
ISO 15489-1:2016 (Microsoft 365)
ISO 16175-1:2020 (Microsoft 365)
ISO 19791 - Information technology — Security techniques — Security assessment of operational systems (Microsoft 365)
ISO 22301:2019 (Microsoft 365)
ISO 23081-1:2017 (Microsoft 365)
ISO 27005:2018 (Microsoft 365)
ISO 27017:2015 (Microsoft 365)
ISO 27034-1 Information technology — Security techniques — Application security (Microsoft 365)
ISO 27799: 2016, Health informatics — Information security management in health (Microsoft 365)
ISO 28000 – Specifications for Security Management Systems for the Supply Chain (Microsoft 365)
ISO 31000:2018 (Microsoft 365)
ISO 55001 – Asset management -- Management systems--Requirements (Microsoft 365)
ISO IEC 80001-1:2010 (Microsoft 365)
ISO/IEC 27001:2013
ISO/IEC 27018:2019 (Microsoft 365)
ISO/IEC 27033-1:2015 (Microsoft 365)
ISO/IEC 27701:2019 (Microsoft 365)
System and Organization Controls (SOC) 1
System and Organization Controls (SOC) 2
Industry
AICPA/CICA Generally Accepted Privacy Principles (GAPP) (Microsoft 365)
ARMA - Implementing the Generally Accepted Record Keeping Principles (GARP) (Microsoft 365)
CDSA Content Protection & Security Standard (Microsoft 365)
CIS Implementation Group 1, Group 2, Group 3
CIS Microsoft 365 Foundation Level 1 and 2
Cloud Security Alliance (CSA) Cloud Controls Matrix (CCM)
COBIT 5 (Microsoft 365)
FINRA Cybersecurity Checklist (Microsoft 365)
ITU X.1052 Information Security Management Framework (Microsoft 365)
Joint Commission Information Management Standard (Microsoft 365)
Motion Picture Association (MPA) Content Security Best Practices (Microsoft 365)
NERC CIP (Microsoft 365)
SWIFT Customer Security Controls (Microsoft 365)
OWASP ProActive Controls for Developers 2018 v3.0 (Microsoft 365)
(NAIC) Standards for Safeguarding Customer Information Model Regulation MDL-673
PCI DSS v3.2.1 (Microsoft 365)
Privacy of Consumer Financial and Health Information Regulation, NAIC MDL-672, Q2 2017 (Microsoft 365)
Revisions to the principles for the sound management of operational risk (Basel III Ops Risks) (Microsoft 365)
Standardized Information Gathering (SIG) Questionnaire (Microsoft 365)
Trusted Information Security Assessment Exchange

  • MPN: 76be61a7-2c03-4b3e-8330-63b11bd904ed
  • £1,885.30 Monthly Ex VAT
    £22,623.60 Annually Ex VAT

    Quantity: Order