Cloud

DISA releases draft of new cloud security requirements

Cloud network security

The Defense Information Systems Agency has released a draft of a security requirements guide for cloud computing across the Defense Department. When finalized, the SRG would supersede and rescind current guidance under the Cloud Security Model.

When that guidance is published, cloud providers being assessed against the CSM requirements must comply with the new SRG "in coordination" with their next annual FedRAMP reauthorization, the draft states.

DISA, the agency in charge of the IT infrastructure underpinning DOD missions, has been updating its security guidelines to clarify for commercial cloud providers what it will take to operate sensitive and classified DOD information.

Comments from industry and others interested in the draft SRG are due Dec. 29.

About the Author

Sean Lyngaas is a former FCW staff writer.

Featured

  • Defense
    The U.S. Army Corps of Engineers and the National Geospatial-Intelligence Agency (NGA) reveal concept renderings for the Next NGA West (N2W) campus from the design-build team McCarthy HITT winning proposal. The entirety of the campus is anticipated to be operational in 2025.

    How NGA is tackling interoperability challenges

    Mark Munsell, the National Geospatial-Intelligence Agency’s CTO, talks about talent shortages and how the agency is working to get more unclassified data.

  • Veterans Affairs
    Veterans Affairs CIO Jim Gfrerer speaks at an Oct. 10 FCW event (Photo credit: Troy K. Schneider)

    VA's pivot to agile

    With 10 months on the job, Veterans Affairs CIO Jim Gfrerer is pushing his organization toward a culture of constant delivery.

Stay Connected

FCW INSIDER

Sign up for our newsletter.

I agree to this site's Privacy Policy.