Merge pull request #101076 from vhorne/fw-compliance

create firewall compliance certifications article

Author: shawnmariejones

articles/firewall/compliance-certifications.md

@@ -0,0 +1,108 @@
+---
+title: Azure Firewall compliance certifications
+description: A list of Azure Firewall compliance certifications for PCI, SOC, and ISO
+services: firewall
+author: vhorne
+ms.service: firewall
+ms.topic: article
+ms.date: 01/17/2020
+ms.author: victorh
+---
+
+# Azure Firewall compliance certifications
+
+Azure Firewall is Payment Card Industry (PCI), Service Organization Controls (SOC), International Organization for Standardization (ISO), and HITRUST compliant.
+
+The following certifications are for global Azure and Azure Government.
+
+## Global Azure certifications
+
+The following Azure Firewall certifications are for global Azure:
+
+- 23 NYCRR 500
+- AFM and DNB (Netherlands)
+- AMF and ACPR (France)
+- APRA(Australia)
+- Argentina PDPA
+- Australia IRAP
+- CDSA
+- CFTC 1.31
+- CSA STAR Attestation
+- CSA STAR Certification
+- CSA STAR Self-Assessment
+- Canadian Privacy Laws
+- DPP(UK)
+- EU ENISA IAF
+- EU Model Clauses
+- European Banking Authority
+- FCA and PRA (UK)
+- FERPA (US)
+- FFIEC(US)
+- FINMA (Switzerland)
+- FSA (Denmark)
+- GLBA (US)
+- Germany C5
+- GxP (FDA 21 CFR Part 11)
+- HITRUST
+- ISO 20000-1:2011
+- ISO 22301:2012
+- ISO 27001:2013
+- ISO 27017:2015
+- ISO 27018:2014
+- ISO 9001:2015
+- Japan My Number Act
+- K-ISMS
+- KNF(Poland)
+- MAS and ABS (Singapore)
+- MPAA(US)
+- NBB and FSMA (Belgium)
+- NEN 7510:2011 (Netherlands)
+- NHS IG Toolkit (UK)
+- Netherlands BIR 2012
+- OSFI(Canada)
+- PCI DSS Level 1
+- RBI and IRDAI (India)
+- SOC 1 Type 2
+- SOC 2 Type 2
+- SOC 3
+- SOX (US)
+- Spain DPA
+- TISAX
+- TruSight
+- UK G-Cloud
+- WCAG 2.0
+
+
+## Azure Government certifications
+
+The following Azure Firewall certifications are for Azure Government:
+
+- CJIS
+- CNSSI 1253
+- CSA STAR Attestation
+- DFARS
+- DoD DISA SRG Level 2
+- DoE 10 CFR Part 810
+- EAR
+- FIPS 140-2
+- FedRAMP High
+- HITRUST
+- IRS 1075
+- ITAR
+- MARS-E (US)
+- NERC
+- NIST Cybersecurity Framework
+- NIST SP 800-171
+- SOC 1 Type 2
+- SOC 2 Type 2
+- SOC 3
+- SOX (US)
+- Section 508 VPATs
+
+
+## Next steps
+
+For more information about Microsoft compliance, see the following information.
+
+- [Microsoft Compliance Guide](https://servicetrust.microsoft.com/ViewPage/MSComplianceGuide)
+- [Overview of Microsoft Azure compliance](https://gallery.technet.microsoft.com/Overview-of-Azure-c1be3942)

articles/firewall/overview.md

@@ -6,7 +6,7 @@ ms.service: firewall
 services: firewall
 ms.topic: overview
 ms.custom: mvc
-ms.date: 01/13/2020
+ms.date: 01/15/2020
 ms.author: victorh
 Customer intent: As an administrator, I want to evaluate Azure Firewall so I can determine if I want to use it.
 ---
@@ -85,11 +85,10 @@ This enables the following scenarios:
 
 All events are integrated with Azure Monitor, allowing you to archive logs to a storage account, stream events to your Event Hub, or send them to Azure Monitor logs.
 
-## PCI, SOC, and ISO compliant
+## Compliance certifications
 
-Azure Firewall is Payment Card Industry (PCI), Service Organization Controls (SOC), and International Organization for Standardization (ISO) compliant. It currently supports SOC 1 Type 2, SOC 2 Type 2, SOC 3, PCI DSS, and ISO 27001, 27018, 20000-1, 22301, 9001, 27017.
+Azure Firewall is Payment Card Industry (PCI), Service Organization Controls (SOC), and International Organization for Standardization (ISO) compliant. For more information, see [Azure Firewall compliance certifications](compliance-certifications.md).
 
-For more information, see the [Microsoft Compliance Guide](https://servicetrust.microsoft.com/ViewPage/MSComplianceGuide).
 
 ## Known issues
 

articles/firewall/toc.yml

@@ -35,6 +35,8 @@
       href: rule-processing.md
     - name: Service tags
       href: service-tags.md
+    - name: Compliance certifications
+      href: compliance-certifications.md
 - name: How-to guides
   items:
     - name: Deploy using Azure PowerShell