びびなび : ワシントンDC : (アメリカ合衆国) Washington DC

Security Update: Announcing the launch of the 2025 Q1 CMS Enterprise Security Campaign








CMS Cloud


CMS Hybrid Cloud OIT Backups Policy and Backup Plan Deployment

________________________________________________________________________



Summary

To improve the backup and restore services to CMS Hybrid Cloud customers, we have implemented a new set of policies and tools for performing operational backups. This new service ensures all necessary resources are backed up consistently, reliably, and according to all security controls governing CMS Hybrid Cloud.  In support of this effort, the CMS Hybrid Cloud Team will deploy a new default set of Backup Plans and Vault within your AWS Backup environment.

Background and Timeline

The new default backup plans will be deployed automatically on *Thursday, February 20, 2025. * Additionally, your Technical Advisor will schedule time beginning in the last week of February to deep dive and review individual application needs related to the new Office of Information Technology (OIT) policy.*  *These sessions will provide the necessary information to support this improvement, which includes migrating from Cloud Protection Manager (CPM) to AWS Backups as our primary tool for performing operational backups in AWS and Azure Backups in Microsoft Azure for Government (MAG).

*Important notice for Azure (MAG) customers:* Because CPM was never available to customers hosted in MAG, this serves as formal confirmation that Azure Backups is the CMS Hybrid Cloud solution for enterprise backups for MAG.

Action Required

The new OIT Backups Policy will impact all CMS Hybrid Cloud customers. We strongly encourage all customers to review the new *OIT Cloud Backups Policy [ https://mcas-proxyweb.mcas.ms/certificate-checker?login=false&originalUrl=https%3A%2F%2Flinks-2.govdelivery.com.mcas.ms%2FCL0%2Fhttps%3A%252F%252Fcloud.cms.gov%252Foit-backups-policy%2F1%2F010101944ce1d9f1-ed85d5a6-970c-40e0-9168-3937c6742e7a-000000%2Fgiv2Uql-JF_4osMKiFGxcbz0m_Rr6bHVUzX8b_KCX0I%3D387%3FMcasTsid%3D20893&McasCSRF=5ac3bdef3ff68de08290fdadd4e3f00fdb99667e663b1770a999b3ed79807317 ]* that documents backup requirements based on Acceptable Risk Safeguards (ARS) security controls. Additionally, the following governance documentation is available for customers to familiarize themselves with:


* *Introduction to AWS Backups [ https://mcas-proxyweb.mcas.ms/certificate-checker?login=false&originalUrl=https%3A%2F%2Flinks-2.govdelivery.com.mcas.ms%2FCL0%2Fhttps%3A%252F%252Fcloud.cms.gov%252Faws-backups%2F1%2F010101944ce1d9f1-ed85d5a6-970c-40e0-9168-3937c6742e7a-000000%2F7ZlRlDpld_BQZ9Mg3hiOUcyTjd78PJ8ASmTWPMTS3sE%3D387%3FMcasTsid%3D20893&McasCSRF=5ac3bdef3ff68de08290fdadd4e3f00fdb99667e663b1770a999b3ed79807317 ]*
* *Creating Custom AWS Backup Plans [ https://mcas-proxyweb.mcas.ms/certificate-checker?login=false&originalUrl=https%3A%2F%2Flinks-2.govdelivery.com.mcas.ms%2FCL0%2Fhttps%3A%252F%252Fcloud.cms.gov%252Fcreating-custom-aws-backup-plans%2F1%2F010101944ce1d9f1-ed85d5a6-970c-40e0-9168-3937c6742e7a-000000%2F9BKNwSqALSB3AqtlyWaSdr0UlIyWMjfBGClnkcYfNVM%3D387%3FMcasTsid%3D20893&McasCSRF=5ac3bdef3ff68de08290fdadd4e3f00fdb99667e663b1770a999b3ed79807317 ]*
* *Monitoring and alerting with AWS Backup [ https://mcas-proxyweb.mcas.ms/certificate-checker?login=false&originalUrl=https%3A%2F%2Flinks-2.govdelivery.com.mcas.ms%2FCL0%2Fhttps%3A%252F%252Fcloud.cms.gov%252Fmonitoring-and-alerting-with-aws-backup%2F1%2F010101944ce1d9f1-ed85d5a6-970c-40e0-9168-3937c6742e7a-000000%2FWFhFF5127FQr-vcfq_Tvkyrf2HjLN6Y3oxhYm_1XjBM%3D387%3FMcasTsid%3D20893&McasCSRF=5ac3bdef3ff68de08290fdadd4e3f00fdb99667e663b1770a999b3ed79807317 ]*
* *Migrating from CPM to AWS Backup [ https://mcas-proxyweb.mcas.ms/certificate-checker?login=false&originalUrl=https%3A%2F%2Flinks-2.govdelivery.com.mcas.ms%2FCL0%2Fhttps%3A%252F%252Fcloud.cms.gov%252Fmigrating-from-cpm-to-aws-backups%2F1%2F010101944ce1d9f1-ed85d5a6-970c-40e0-9168-3937c6742e7a-000000%2F0gotBJjJoRXNeHfayOq6u5S6RCH-e5HFC7Gfw0q18_M%3D387%3FMcasTsid%3D20893&McasCSRF=5ac3bdef3ff68de08290fdadd4e3f00fdb99667e663b1770a999b3ed79807317 ]*

The new default backup plans will be deployed automatically, and no action is required on your part.

Additional Information

For your reference, the screenshots below show how the New Default Backup Plans and Vault configuration will appear in the AWS Backup console: 

Backup PlansVaults
Questions or Concerns

For questions or concerns about this initiative, please work directly with your Hosting Coordinator or Technical Advisor.



Office of Information Technology




You are subscribed to receive email messages about CMS Cloud Operations, Changes, and Outages from the Centers for Medicare & Medicaid Services (CMS).

To update your subscription(s), preferences or to stop receiving messages from the CMS Cloud Operations, Changes, and Outages Updates- distribution list, please go to our Subscriber Preferences Page [ https://public.govdelivery.com/accounts/USCMS/subscriber/new?category_id=USCMS_C176 ].

________________________________________________________________________

This email was sent to mshinji3056@gmail.com using GovDelivery Communications Cloud 7500 Security Boulevard · Baltimore MD 21244


body .abe-column-block { min-height: 5px; } table.gd_combo_table img {margin-left:10px; margin-right:10px;} table.gd_combo_table div.govd_image_display img, table.gd_combo_table td.gd_combo_image_cell img {margin-left:0px; margin-right:0px;} table.govd_hr {min-width: 100%;}