Your organization currently holds an Azure subscription that has implemented enhanced security measures via Microsoft Defender for Cloud. Recently, your company has entered into a contractual agreement with the United States government. As part of this new agreement, you are required to ensure that the existing Azure subscription is compliant with NIST Special Publication 800-53, which outlines the security and privacy controls for federal information systems and organizations. What is the initial step you should take to review the current subscription for NIST 800-53 compliance?