Disa Cloud Computing Security Requirements Guide Srg

6 march 2017.

Disa cloud computing security requirements guide srg.

This document the cloud computing security requirements guide srg documents cloud security requirements in a construct similar to other srgs published by disa for the dod. This srg incorporates supersedes and rescinds the previously published cloud security model. Disa is responsible for developing the disn protection requirements and guidance to secure the connection point to the cloud service provider csp. This document the cloud computing security requirements guide srg documents cloud security requirements in a construct similar to other srgs published by disa for the dod.

This srg incorporates supersedes and rescinds the previously published cloud security model. There are now four. Unclassified 2 unclassified united in service to our nation agenda the players security responsibility cc srg focus cc srg and mobility cc srg purpose history. Security requirements guide.

Cloud service providers in fedramp process 09 mar 2019. Disa is well positioned to provide enterprise capabilitiesto secure dod mission owner systems deployed to the commercial cloud. Cloud computing srg v1r3 online version 20 mar 2019. Security requirements guide.

Defense information systems agency. 6 march 2017. Released 12 january 2015 version 1 release 1 provides comprehensive security guidance for components missions to acquire cloud services provides comprehensive guidance for csp s to understand security requirements if they so choose to deliver cloud. Home dod cloud computing security dccs document library title size updated.

2017 final version 1 release 3 released final. The definitions for these data levels are laid out in the srg. Apply the dod cloud computing security requirements guide srg figure 3. Dod cio memo pii in il2 csos and cc srg updated guidance 506 82 kb 26 sep 2019.

Dod cloud computing security requirements guide srg overview. Cloud computing security requirements guide cc srg ron rice. Cloud computing security requirements guide cc srg dod cloud computing policy and the cc srg is constantly evolving based on lessons learned with respect to the authorization of cloud service offerings and their use by dod components. As such the cc srg is following an agile policy development strategy and will be updated quickly when necessary.

Developed by the. Security requirements guide srg understanding the srg is crucial in acquiring cloud services. Developed by the. Defense information systems agency.

The following terms will be used throughout this document. Commercial companies and government cloud providers are authorized to provide cloud offerings for different levels of data. Department of defense. Disa cyber standards branch re11 may 2018 vendors named within are approved or under contract to provide specified services to disa or dod.

Version 1 release 3. Cloud related baselines and emass cloud overlays ver 1 rel 1 597 01 kb.