Azure Blueprints samples

The following table includes links to samples for Azure Blueprints. Each sample is production quality and ready to deploy today to assist you in meeting your various compliance needs.

Standards-based blueprint samples

Canada Federal PBMM Provides guardrails for compliance to Canada Federal Protected B, Medium Integrity, Medium Availability (PBMM).
CIS Microsoft Azure Foundations Benchmark Provides a set of policies to help comply with CIS Microsoft Azure Foundations Benchmark recommendations.
DoD Impact Level 4 Provides a set of policies to help comply with DoD Impact Level 4.
FedRAMP Moderate Provides a set of policies to help comply with FedRAMP Moderate.
FedRAMP High Provides a set of policies to help comply with FedRAMP High.
HIPAA HITRUST Provides a set of policies to help comply with HIPAA HITRUST.
IRS 1075 Provides guardrails for compliance to IRS 1075.
ISO 27001 Provides guardrails for compliance with ISO 27001.
ISO 27001 Shared Services Provides a set of compliant infrastructure patterns and policy guard-rails that help towards ISO 27001 attestation.
ISO 27001 App Service Environment/SQL Database workload Provides additional infrastructure to the ISO 27001 Shared Services blueprint sample.
NIST SP 800-53 R4 Provides guardrails for compliance to NIST SP 800-53 R4.
PCI-DSS v3.2.1 Provides a set of policies to aide in PCI-DSS v3.2.1 compliance.
SWIFT CSP-CSCF v2020 Aides in SWIFT CSP-CSCF v2020 compliance.
UK OFFICIAL and UK NHS Governance Provides a set of compliant infrastructure patterns and policy guard-rails that help towards UK OFFICIAL and UK NHS attestation.
CAF Foundation Provides a set of controls to help you manage your cloud estate in alignment with the Microsoft Cloud Adoption Framework for Azure (CAF).
CAF Migrate landing zone Provides a set of controls to help you set up for migrating your first workload and manage your cloud estate in alignment with the Microsoft Cloud Adoption Framework for Azure (CAF).

Samples strategy

Blueprint samples strategy

The CAF foundation and the CAF Migrate landing zone blueprints assume that the customer is preparing an existing clean single subscription for migrating on-premises assets and workloads in to Azure. (Region A and B in the figure).

There's an opportunity to iterate on the sample blueprints and look for patterns of customizations that a customer is applying. There is also an opportunity to proactively address blueprints that are industry-specific like financial services and e-commerce (top end of Region B). Similarly, we envision building blueprints for complex architectural considerations like, multiple subscriptions, high availability, cross region resources and customers who are implementing controls over existing subscriptions and resources (Region C and D).

There are sample blueprints that address customer scenario where the compliance requirements are high and the architectural complexities are high (Region E in the figure). Region F in the figure is one that will be addressed by customers and partners who are leveraging the sample blueprints and customizing it for their unique needs.

Next steps