Hello, Guest!

Microsoft Enhances Tools to Simplify NZ Public Sector Tech Compliance

Microsoft Enhances Tools to Simplify NZ Public Sector Tech Compliance

Microsoft has launched a new Azure Policy initiative aimed at simplifying technology compliance and accelerating cloud adoption for government agencies in New Zealand. The initiative includes enhancements to management tools and Microsoft Defender for Cloud, which will automate compliance with the cybersecurity, privacy and data management requirements in the New Zealand Information Security Manual.

In 2021, Microsoft introduced policies to assist agencies in compliance, but those new to cloud technology found the implementation process to be complex, prompting the work to streamline the process. Now, the automated system deploys the updated NZISM solution for more efficient infrastructure compliance reviews, eliminating the need to review lengthy documents. It also offers real-time assessments of regulatory compliance, flagging non-compliant configurations, settings and systems.

Additionally, Microsoft plans to integrate Copilot capabilities that will enable internal compliance officers to query the tool and receive personalized recommendations aligned with relevant compliance and regulatory standards.

Mark Anderson, chief security officer at Microsoft Australia and New Zealand, said that automation helps address resource challenges, especially for smaller agencies with fewer internal resources for compliance monitoring. “Automating the process with this solution not only accelerates the path to NZISM alignment and compliance but empowers agencies with actionable, automated insights that allow them to confidently adopt new technology without the manual overhead of compliance checklists that have historically slowed progress,” Anderson said.

The NZISM is a comprehensive 1,000-page manual designed to guide government agencies on information assurance and the security of information systems. It was created to meet the needs of government agency executives responsible for information security, as well as vendors providing services to these agencies, and contractors and consultants working with them. The document is also a valuable resource for Crown entities, local government bodies and private organizations.

POC - 2025 Digital Transformation Summit

Gain further insights into digital transformation strategies for the public sector at the Potomac Officers Club’s 2025 Digital Transformation Summit on April 30. This event will bring together government and industry leaders to discuss emerging technologies and their impact on federal operations. Register here.

;