Federal Cloud Computing

The Definitive Guide for Cloud Service Providers


  • Matthew Metheny, Matthew Metheny, PMP, CISSP, CAP, CISA, CSSLP, CRISC, CCSK, is an IT consultant based in Washington D.C.

Federal Cloud Computing: The Definitive Guide for Cloud Service Providers offers an in-depth look at topics surrounding federal cloud computing within the federal government, including the Federal Cloud Computing Strategy, Cloud Computing Standards, Security and Privacy, and Security Automation.

You will learn the basics of the NIST risk management framework (RMF) with a specific focus on cloud computing environments, all aspects of the Federal Risk and Authorization Management Program (FedRAMP) process, and steps for cost-effectively implementing the Assessment and Authorization (A&A) process, as well as strategies for implementing Continuous Monitoring, enabling the Cloud Service Provider to address the FedRAMP requirement on an ongoing basis.

View full description


Executives (CIOs/CFOs), IT Security Professionals (Security Auditors, Security Engineers, Compliance Specialists, etc.), IT Professionals (Virtualization Specialists, Software Developers, Consultants, etc.)


Book information

  • Published: November 2012
  • Imprint: SYNGRESS
  • ISBN: 978-1-59749-737-4

Table of Contents

Chapter 1 - Introduction to the Federal Cloud Computing Strategy

Chapter 2 - Cloud Computing Standards

Chapter 3 - A Case for Open Source

Chapter 4 - Security and Privacy in Public Cloud Computing

Chapter 5 - Applying the NIST Risk Management Framework

Chapter 6 - Risk Management

Chapter 7 - Comparison of FISMA with Other Security Compliance Standards

Chapter 8 - FedRAMP Primer

Chapter 9 - The FedRAMP Cloud Computing Security Requirements

Chapter 10 - Security Assessment and Authorization: Governance, Preparation, and Execution

Chapter 11 - Strategies for Continuous Monitoring

Chapter 12 - Cost-Effective Compliance using Security Automation

Chapter 13 - A Case Study for Cloud Service Providers