Pete Hegseth addressed Microsoft security concerns. (AP Photo/Rick Rycroft; Philip Fong/AFP via Getty Images; Omar Havana/Getty Images)
"In response to concerns raised earlier this week about U.S.-supervised foreign engineers, Microsoft has made changes to our support for U.S. government customers to assure that no China-based engineering teams are providing technical assistance for DOD government cloud and related services," Frank Shaw, chief communications officer at Microsoft, said.
"We remain committed to providing the most secure services possible to the U.S. government, including working with our national security partners to evaluate and adjust our security protocols as needed."
The ProPublica report released earlier this week, which spurred Microsoft's action, cited current and former employees and government contractors who worked on a cloud computing program deployed by Microsoft in 2016. The program, meant to meet federal contracting regulations, used a system of "digital escort" chaperones for global cybersecurity officials, such as those based in China, meant to create a security buffer so that they can work on agency computing systems. DOD guidelines require that people handling sensitive data be U.S. citizens or permanent residents.
The Pentagon in Arlington, Va. (Staff/AFP via Getty Images)
Before Microsoft's announcement Friday that it would be ceasing its use of China-based engineers for sensitive Defense Department programs, the company defended its "digital escort" program, noting all personnel and contractors with privileged access must pass federally approved background checks. The company also pointed to a response from the Defense Information Systems Agency, which said that "digital escorts" are used "in select unclassified environments."
"For some technical requests, Microsoft engages our team of global subject-matter experts to provide support through authorized U.S. personnel, consistent with U.S. government requirements and processes," a company spokesperson told Fox News Digital Tuesday. "In these instances, global support personnel have no direct access to customer data or customer systems."
The spokesperson added at the time that Microsoft adheres to the federal security requirements outlined by the Defense Department and the Federal Risk and Authorization Management Program established in 2011 to address the risks associated with moving from entirely government-controlled servers to cloud-based computing.
CLICK HERE TO GET THE FOX NEWS APP
"We establish layers of mitigation at the platform level with security and monitoring controls to detect and prevent threats. This includes approval workflows for system changes and automated code reviews to quickly detect and prevent the introduction of vulnerabilities," the spokesperson said. "This production system support model is approved and regularly audited by the U.S. government."
Fox News Digital reached out to the Pentagon to inquire whether Microsoft's action changes its planned investigation but did not receive a response by publication time.
https://www.foxnews.com/politics/microsoft-ends-use-china-based-computer-engineers-certain-defense-dept-projects-amid-espionage-fears