Event banner
Event details
Is there an effective way to cross-map or compare Trusted Internet Connection (TIC 3.0) guidance with CMMC or 800-53 requirements? Agencies and industry are moving quickly towards TIC and zero trust concepts, and we'd love to keep all these initiatives aligned.
RichardWakeman
Microsoft
MicrosoftHowdy Ryan! Always love your stump da chump! 🙂 Ultimately, our Federal customers must get Agency FedRAMP ATOs for connecting to O365 and Azure with supporting documentation to support the TIC. As it stands, most Federal customers enforce Express Route through their TIC to Azure Gov (incl GCCH & DoD). This is primarily assisted by our MS Federal support teams, but is really the gov't requirement as opposed to MSFT. Check out https://docs.microsoft.com/en-us/azure/architecture/example-scenario/security/trusted-internet-connections.
For the mapping, TJ Banasic just released a Sentinel Solution that does some mapping. https://docs.microsoft.com/en-us/security/zero-trust/integrate/sentinel-solution.
We can follow up with TJ on the cross-walk to 171/53. And the MS Federal teams if they can share some info.
But my favorite aspect of TIC 3.0 is the ability to use ZTA to connect directly to the cloud. "Dynamic Routing" as we call it. Our whitepaper: https://cortacgroup.com/wp-content/uploads/2022/02/CMMC-and-Split-Tunnels_Feb2022.pdf