Story image

Microsoft addresses NZ Government questions on cloud security

28 May 15

Microsoft says it is the first cloud service provider in New Zealand to publicly demonstrate how its cloud platform, Azure, meets New Zealand Government cloud security requirements.

The global behemoth has responded to a 105 questions focused on security and privacy aspects of cloud services, outlined in a ‘due diligence framework’ for agencies to use in evaluating cloud computing services.

The framework is not a New Zealand government standard against which cloud service providers must demonstrate formal compliance.

However, Russell Craig, Microsoft New Zealand national technology officer, says the questions ‘point customers toward the importance of understanding cloud service providers’ compliance with a wide array of relevant standards, the approach they take to security and data privacy and what they do and don’t do with customers’ data’.

“This is a great step forward for us in being able to show both public and private sector customers how Microsoft addresses important security, privacy and sovereignty issues. None of our competitors have done anything like this” Craig says.

While the framework is designed for government organisations, Craig says the questions set out – and Microsoft’s responses – will be helpful for other organisations evaluating cloud service providers.

“We would like to think that our responses set the benchmark for the level of detail and transparency that cloud providers can and should offer their customers about these vital matters,” he adds.

The document covers areas including which legal jurisdictions data will be stored and processed in, whether the service provider allows customers to specify locations where data can and cannot be stored and processed and use of third parties which may introduce additional jurisdictional risks.

NZ’s $3.45bil IT services market fueled by competitive advantage
"With regards to cloud adoption, organisations are prioritising innovation and security over cost and scalability.”
The secret to scaling DevOps in the digital era
"Organisations around the world have learnt at a cost that while agile DevOps methodologies can result in improved outcomes within teams and projects, they have a propensity to fail miserably."
APAC FinTech network launches to encourage cross-border innovation
Nine associations formally launched the network by signing a Statement of Intent at the Asian Financial Forum event in Hong Kong.
Avaya expands AI offerings with new partnerships
The additions to the ecosystem will enable Avaya to add prioritisation and natural language processing to its UC solutions.
Hillstone CTO's 2019 security predictions
Hillstone Networks CTO Tim Liu shares what key developments could be expected in the areas of security compliance, cloud, security, AI and IoT.
Kiwis make waves in IoT World Cup
A New Zealand company, KotahiNet, has been named as a finalist in the IoT World Cup for its River Pollution Monitoring solution.
Can it be trusted? Huawei’s founder speaks out
Ren Zhengfei spoke candidly in a recent media roundtable about security, 5G, his daughter’s detainment, the USA, and the West’s perception of Huawei.
SUSE partners with Intel and SAP to accelerate IT transformation
SUSE announced support for Intel Optane DC persistent memory with SAP HANA.