Cloud

DISA releases draft of new cloud security requirements

Cloud network security

The Defense Information Systems Agency has released a draft of a security requirements guide for cloud computing across the Defense Department. When finalized, the SRG would supersede and rescind current guidance under the Cloud Security Model.

When that guidance is published, cloud providers being assessed against the CSM requirements must comply with the new SRG "in coordination" with their next annual FedRAMP reauthorization, the draft states.

DISA, the agency in charge of the IT infrastructure underpinning DOD missions, has been updating its security guidelines to clarify for commercial cloud providers what it will take to operate sensitive and classified DOD information.

Comments from industry and others interested in the draft SRG are due Dec. 29.

About the Author

Sean Lyngaas is a former FCW staff writer.

Featured

  • Government Innovation Awards
    Government Innovation Awards - https://governmentinnovationawards.com

    Congratulations to the 2021 Rising Stars

    These early-career leaders already are having an outsized impact on government IT.

  • Acquisition
    Shutterstock ID 169474442 By Maxx-Studio

    The growing importance of GWACs

    One of the government's most popular methods for buying emerging technologies and critical IT services faces significant challenges in an ever-changing marketplace

Stay Connected