EPC Group - Enterprise Microsoft AI, SharePoint, Power BI, and Azure Consulting
G2 High Performer Summer 2025, Momentum Leader Spring 2025, Leader Winter 2025, Leader Spring 2026
BlogContact
Ready to transform your Microsoft environment?Get started today
(888) 381-9725Get Free Consultation
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌
‌

EPC Group

Enterprise Microsoft consulting with 29 years serving Fortune 500 companies.

(888) 381-9725
contact@epcgroup.net
4900 Woodway Drive, Suite 830
Houston, TX 77056

Follow Us

Solutions

  • M&A Practices

    • M&A Tenant Migration
    • Carve-Out Migration
    • Private Equity Practice
    • Engagement Operating Model
  • All Services
  • Microsoft 365 Consulting
  • AI Governance
  • Azure AI Consulting
  • Cloud Migration
  • Microsoft Copilot
  • Data Governance
  • Microsoft Fabric
  • Dynamics 365
  • Power BI Consulting
  • SharePoint Consulting
  • Microsoft Teams
  • vCIO / vCAIO Services
  • Large-Scale Migrations
  • SharePoint Development

Industries

  • All Industries
  • Healthcare IT
  • Financial Services
  • Government
  • Education
  • Teams vs Slack

Power BI

  • Case Studies
  • 24/7 Emergency Support
  • Dashboard Guide
  • Gateway Setup
  • Premium Features
  • Lookup Functions
  • Power Pivot vs BI
  • Treemaps Guide
  • Dataverse
  • Power BI Consulting

Company

  • About Us
  • Our History
  • Microsoft Gold Partner
  • Case Studies
  • Testimonials
  • Fixed-Fee Accelerators
  • Blog
  • Resources
  • All Guides & Articles
  • Video Library
  • Client Reviews
  • Engagement Operating Model
  • FAQ
  • Contact
  • Schedule a consultation

Microsoft Teams

  • Teams Questions
  • Teams Healthcare
  • Task Management
  • PSTN Calling
  • Enable Dial Pad

Azure & SharePoint

  • Azure Databricks
  • Azure DevOps
  • Azure Synapse
  • SharePoint MySites
  • SharePoint ECM
  • SharePoint vs M-Files

Comparisons

  • M365 vs Google
  • Databricks vs Dataproc
  • Dynamics vs SAP
  • Intune vs SCCM
  • Power BI vs MicroStrategy

Legal

  • Sitemap
  • Privacy Policy
  • Terms
  • Cookies

About EPC Group

EPC Group is a Microsoft consulting firm founded in 1997 (originally Enterprise Project Consulting, renamed EPC Group in 2005). 29 years of enterprise Microsoft consulting experience. EPC Group historically held the distinction of being the oldest continuous Microsoft Gold Partner in North America from 2016 until the program's retirement. Because Microsoft officially deprecated the Gold/Silver tiering framework, EPC Group transitioned to the modern Microsoft Solutions Partner ecosystem and currently holds the core Microsoft Solutions Partner designations.

Headquartered at 4900 Woodway Drive, Suite 830, Houston, TX 77056. Public clients include NASA, FBI, Federal Reserve, Pentagon, United Airlines, PepsiCo, Nike, and Northrop Grumman. 6,500+ SharePoint implementations, 1,500+ Power BI deployments, 500+ Microsoft Fabric implementations, 70+ Fortune 500 organizations served, 11,000+ enterprise engagements, 200+ Microsoft Power BI and Microsoft 365 consultants on staff.

About Errin O'Connor

Errin O'Connor is the Founder, CEO, and Chief AI Architect of EPC Group. Microsoft MVP multiple years, first awarded 2003. 4× Microsoft Press bestselling author of Windows SharePoint Services 3.0 Inside Out (MS Press 2007), Microsoft SharePoint Foundation 2010 Inside Out (MS Press 2011), SharePoint 2013 Field Guide (Sams/Pearson 2014), and Microsoft Power BI Dashboards Step by Step (MS Press 2018).

Original SharePoint Beta Team member (Project Tahoe). Original Power BI Beta Team member (Project Crescent). FedRAMP framework contributor. Worked with U.S. CIO Vivek Kundra on the Obama administration's 25-Point Plan to reform federal IT, and with NASA CIO Chris Kemp as Lead Architect on the NASA Nebula Cloud project. Speaker at Microsoft Ignite, SharePoint Conference, KMWorld, and DATAVERSITY.

© 2026 EPC Group. All rights reserved. Microsoft, SharePoint, Power BI, Azure, Microsoft 365, Microsoft Copilot, Microsoft Fabric, and Microsoft Dynamics 365 are trademarks of the Microsoft group of companies.

Home / Tools / FedRAMP Readiness Score

FedRAMP Readiness Score

20-question self-assessment. NIST 800-53 Rev 5 + FedRAMP Moderate + High aligned.

Questions

1.Access Control

All privileged accounts (admin/elevated) require phishing-resistant MFA (FIDO2 / certificate-based, not SMS)?

2.Access Control

Just-in-time + just-enough access (PIM) enforced for all privileged role activations?

3.Access Control

Conditional Access policies restrict by device compliance + location + risk?

4.Encryption

All data encrypted at rest (FIPS 140-2 validated modules)?

5.Encryption

All data encrypted in transit (TLS 1.2+, no insecure ciphers)?

6.Encryption

Customer-managed keys (CMK / BYOK) for sensitive workloads?

7.Audit + Accountability

Centralized audit log with 1-year minimum hot retention (3-year for High)?

8.Audit + Accountability

Audit logs streamed to tamper-evident WORM storage?

9.Audit + Accountability

Quarterly audit log integrity verification + reporting?

10.Incident Response

Documented incident response plan tested via tabletop annually?

11.Incident Response

SIEM integration with 24/7 SOC monitoring (in-house or managed)?

12.Incident Response

Breach notification workflow under 72-hour SLA?

13.Configuration Management

All systems hardened to CIS Benchmark or DISA STIG baseline?

14.Configuration Management

Configuration drift monitoring (Microsoft Defender for Cloud or equivalent)?

15.Contingency Planning

Tested disaster recovery runbook with RTO + RPO documented?

16.Contingency Planning

Quarterly backup restoration test (not just backup completion check)?

17.Identification + Authentication

Identity provider supports SAML 2.0 + OIDC + scoped service principals?

18.Identification + Authentication

Service accounts inventoried + rotated on schedule (90-180 days)?

19.System + Information Integrity

Endpoint detection + response (EDR) deployed to all systems?

20.System + Information Integrity

Vulnerability scanning at least monthly + remediation SLA documented?

Your Score

0
out of 100
Significant Gaps
Answered0/20
Yes0
No0

Recommendation

12-18 month roadmap. Full FedRAMP readiness engagement required.

Discuss with FedRAMP team

Schedule Your FedRAMP Discovery

29 years Microsoft + federal experience. FRBNY + NASA + DoD pedigree.

Schedule Discovery Call Call (888) 381-9725