Cloud

DOD updates cloud requirements guide

cloud security

Defense Department IT officials have released an update to a cloud security requirements guide that governs commercial cloud offerings for DOD missions up to the secret level.

The SRG helps determine whether defense officials grant commercial cloud firms a provisional authorization to host DOD data. This is the second iteration of the SRG, and it is based on feedback from the first version, released in January 2015.

The Defense Information Systems Agency and the DOD CIO's office -- the two organizations that issue the SRG -- are still interested in feedback on the document.

"This ongoing public comment period will allow our mission partners to offer changes as they become necessary," said Robert Vietmeyer, associate director for cloud computing and agile development in the DOD CIO's office. "This is in direct support of the DOD CIO's vision of 'agile policy development.'"

DISA also published a history of revisions made to the SRG to track changes to the guidelines. For example, officials removed a section on classified data beyond the Level 6 secret level from the first version of the SRG to "alleviate confusion and any potential inaccuracy."

The SRG is part of an ongoing effort by Pentagon IT leaders to better define what cloud computing means for defense missions. That definition can affect how cloud services are implemented. A DOD inspector general audit conducted from December 2014 to October 2015 found that the lack of a standard definition for cloud computing across the department was undercutting the CIO's effort to deploy cloud services.

About the Author

Sean Lyngaas is a former FCW staff writer.

Featured

  • FCW Perspectives
    tech process (pkproject/Shutterstock.com)

    Understanding the obstacles to automation

    As RPA moves from buzzword to practical applications, agency leaders say it’s forcing broader discussions about business operations

  • Federal 100 Awards
    Federal 100 logo

    Fed 100 nominations are now open

    Help us identify this year's outstanding individuals in federal IT.

Stay Connected

FCW INSIDER

Sign up for our newsletter.

I agree to this site's Privacy Policy.