The GSA STARS II multiple award contract facilitates an effective and powerful method of contracting for professional support services and helping small business involvement. The Navy encourages new innovative cloud industries to have a chance of accomplishing efficiency and effective use of cloud computing in maritime application. Further information available at DoD Security Requirements for Cloud. Cloud computing firms have been coming forward to develop comprehensive cloud computing technology processes while providing world class services at lower cost. However, there is a need to understand the protection requirements of cloud in military application. Security is best accomplished from a micro and macro approach, which includes building new security frameworks and enhancing existing secure frameworks, evaluating mission and risk, and systems integrity examinations.
DoD Security Requirements for Cloud
All DoD Information Systems must comply with CNSSI 1253. This regulation relates to the arrangement of security controls. In addition, protection controls in NIST SP 800-53, for National Security Systems or non-NSS. The CNSSI 1253 baselines are customized from the NIST 800-53 similar to the FedRAMP security baselines. These baselines are a base stages for securing all Department of Defense frameworks, which can be custom-made further to address unique secure frameworks or circumstances.
According to DoD CIO, “segments may have Unclassified DoD data that has been freely discharged on FedRAMP endorsed cloud administrations”. More specifically the FedRAMP v2 Moderate standard, supplemented with DoD FedRAMP+ C/CEs and necessities in this SRG, are utilized to survey CSPs toward recompensing a DoD PA at data effect levels 4 or more.
A custom-made benchmark of security C/CEs has been created for each Department of Defense data effect level, aside from level 2. These baselines fuse, however are not restricted to, the FedRAMP Moderate pattern. The Department of Defense cloud standard C/CEs, which mirrors what is needed by FedRAMP, were chosen fundamentally in light of the fact that they address emerging security issues.
Available on 8(a) STARS II Contract Number GS-06F-0787Z
Contact Cloud Computing Technologies today for a no-obligation cloud proposal! We specialize in planning, designing, implementing, and maintaining cloud computing systems and solutions.
Contact us for a no-obligation proposal