As federal agencies strengthen Zero Trust strategies, the Purple Knight GCC High support expansion brings advanced identity security assessments to highly regulated government environments.

Semperis announced that its Purple Knight tool now fully supports Microsoft GCC High, enabling U.S. federal agencies, Department of Defense organizations, and defense contractors to assess identity security across both on premises and cloud systems.

Purple Knight, a widely used Active Directory and Entra ID security assessment tool, is already trusted by more than 65,000 organizations. With this update, agencies operating in GCC High can now evaluate their cloud identity posture alongside traditional directory services, closing a long standing visibility gap.

The move aligns with updated cybersecurity guidance from the Five Eyes Alliance, which includes agencies such as the National Security Agency and Cybersecurity and Infrastructure Security Agency. Their joint advisory emphasizes the need for continuous monitoring and improved defenses against identity based attacks, particularly within Active Directory environments.

GCC High is designed to meet strict compliance requirements, including FedRAMP High, ITAR, and DFARS. Until now, organizations using this environment could assess on premises systems but lacked tools to evaluate their cloud identity infrastructure with the same depth.

“This is a gamechanger for agencies striving to meet the identity security requirements outlined by the Five Eyes guidance, Executive Order 14028, FISMA, and OMB Memorandum M-22-09—all of which demand that federal organizations adopt Zero Trust principles, harden identity systems, and continuously monitor for compromise,” said Jimmy McNary, Vice President of Federal Solutions at Semperis.

“Federal agencies have been told for years that identity is the perimeter, but many still lack practical, low-friction tools to validate whether that perimeter is truly resilient,” said Ed Amoroso, CEO of TAG Cyber. “Extending Purple Knight into GCC High gives federal defenders a fast, community-driven way to benchmark their hybrid identity posture against the latest Five Eyes guidance and Zero Trust expectations.”

The Purple Knight GCC High support enables comprehensive assessments of hybrid identity environments, helping organizations identify vulnerabilities, misconfigurations, and potential attack paths across both cloud and on premises systems. This capability is particularly important as identity becomes a primary target for cyberattacks.

In addition to Purple Knight, Semperis offers complementary tools for continuous identity protection, including Directory Services Protector for threat detection and response, Active Directory Forest Recovery for disaster recovery, and Lightning Intelligence for ongoing posture monitoring.

The Purple Knight GCC High support expansion reflects a broader shift toward identity centric security in government environments. As agencies adopt Zero Trust frameworks and face increasing regulatory pressure, tools that provide unified visibility and continuous assessment will be essential.

By extending its capabilities into GCC High, Semperis is helping federal organizations strengthen their identity defenses and align with evolving cybersecurity mandates, reinforcing the role of identity as a critical control point in modern security architectures.

Recommended Cyber Technology News:

To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com