Being a contractor with the U.S. Department of Defense, the client sought to meet their DFARS 252.204-7012, 252.204-7019, and DFARS 252.204-7020 cybersecurity requirements. The client also sought to modernize their IT environment and migrate to the cloud. To achieve these objectives, we had to configure their Microsoft 365 environment to meet NIST SP 800-171 requirements as well as move their on-premise resources to the Microsoft 365 environment.
What We did
Our customer was previously using on-premise Active Directory and files servers. We configured the customers Microsoft 365 environment (previously only being used for email) to meet the guidelines recommended by the Center for Internet Security. These security controls encompassed Azure AD, SharePoint, OneDrive, Teams, Exchange email, data leak protection, document labelling, DNS entries, Windows 10 security settings, Android security settings, and iOS security settings.
OWe began by implementing the security controls to the Microsoft 365 environment, including SharePoint sharing restrictions, conditional access policies, multi-factor authentication, and Endpoint manager configuration profiles. We then unenrolled the endpoints from the on-premise active directory and enrolled them with Azure AD. We also migrated files stored on the on-premise file server to SharePoint online. The customer now had no need for on-premise servers, so they were decommissioned.
After implementing the above mentioned changes the customer requested that we also provide them with service desk support to maintain the environment we configured. The service desk provides support from 9:00 AM EST to 5:00 PM EST, Monday through Friday. Tasks we perform include user account management, inventory management, software installations, maintaining policy and procedure documentation, as well as maintaining the overall security of the system to maintain customer compliance with DFARS related NIST SP 800-171 requirements.
The customer, after receiving our Microsoft 365 hardening and other NIST SP 800-171 services was now compliant with DFARS clauses 252.204-7012, 252.204-7019, and DFARS 252.204-7020. The customer no longer had expensive on-premise servers that they needed to maintain. By moving their on-premise Active Directory and file server to the cloud, protecting the confidentiality, integrity, and availability of their information was much more effective.
About the Customer
EOS-AV Corp provides a full range of defense services including parts provisioning, on-time and on-budget deliveries, repair and exchange programs, warehouse management, and inventory system for legacy parts issues. On the commercial side, EOS-AV Corp supports Boeing, Airbus and Regional Aircraft, encompassing everything from Avionics to APUs, landing gears to full interiors.