NIST Gives Agencies Cloud Computing Guidance

Photo: NIST

The National Institute of Standards and Technologies is calling on agencies to take the lead in addressing security and privacy challenges relating to public cloud computing.

NIST’s Guidelines on Security and Privacy in Public Cloud Computing do not suggest any specific service or deployment method for cloud computing, but lists several guidelines agencies should follow when considering their cloud services.

NIST asked agencies to plan and consider the security aspects of utilizing the cloud and said agencies should ensure cloud solutions fulfill the agency’s requirements.

The document also suggests agencies establish strong contractual obligations and stay on top of agency need and whether the provider is meeting those needs. NIST told agencies they are responsible for securing data and applications implementedÂ and deployed in public cloud computing environments.

“The organization should collect and analyze available data about the state of the system regularlyÂ and as often as needed to manage security and privacy risks, as appropriate for each level of theÂ organization,” NIST said.

NIST Gives Agencies Cloud Computing Guidance

Michael Chappell of PEO EIS Previews Insights on Army IT for Upcoming CIO Summit

Senate Bill to Establish Cybersecurity Standards for Federal Workplace Collaboration Tools

NIST Requests Comments on Draft Guidance for Incorporating Incident Response in Risk Management

Leave a Reply