Hahaha, how stupid must anyone be to deploy SharePoint anywhere near anything of national security relevance! How can it still be a thing, that anyone entrusted with such sensitive matter dates to even touch MS products of the kind of SharePoint? That includes the complete MS Office 365 disaster suite, MS Teams and Edge.
Sounds like they need to seriously redesign their security policies.
In general you'll get downvoted if you're talking about any politician or political party. You are allowed to shit on (or advocate for) the government doing stuff tho.
For security-critical or sensitive situations, auditability should be a requirement. That implies access to source code and capabilty to build it.
Decisions like these need to be done from first principles. SharePoint shouldn't even have been a contender here if looked at seriously. Do your own homework.
> For security-critical or sensitive situations, auditability should be a requirement. That implies access to source code and capabilty to build it.
Vendors can be accountable without providing source code, for example through contracts specifying performance.
I don't know how large Sharepoint's source is, though it has many components and I assume there is quite a bit of code. Auditing the source code of something like Microsoft Office seems almost impossible.
Sounds like they need to seriously redesign their security policies.