Federal Cloud Computing
The Definitive Guide for Cloud Service ProvidersBy
- Matthew Metheny, Matthew Metheny, PMP, CISSP, CAP, CISA, CSSLP, CRISC, CCSK, is an IT consultant based in Washington D.C.
Federal Cloud Computing: The Definitive Guide for Cloud Service Providers offers an in-depth look at topics surrounding federal cloud computing within the federal government, including the Federal Cloud Computing Strategy, Cloud Computing Standards, Security and Privacy, and Security Automation.
You will learn the basics of the NIST risk management framework (RMF) with a specific focus on cloud computing environments, all aspects of the Federal Risk and Authorization Management Program (FedRAMP) process, and steps for cost-effectively implementing the Assessment and Authorization (A&A) process, as well as strategies for implementing Continuous Monitoring, enabling the Cloud Service Provider to address the FedRAMP requirement on an ongoing basis.
Executives (CIOs/CFOs), IT Security Professionals (Security Auditors, Security Engineers, Compliance Specialists, etc.), IT Professionals (Virtualization Specialists, Software Developers, Consultants, etc.)
Paperback, 448 Pages
Published: December 2012
Chapter 1 - Introduction to the Federal Cloud Computing Strategy
Chapter 2 - Cloud Computing Standards
Chapter 3 - A Case for Open SourceChapter 4 - Security and Privacy in Public Cloud Computing
Chapter 5 - Applying the NIST Risk Management FrameworkChapter 6 - Risk Management
Chapter 7 - Comparison of FISMA with Other Security Compliance StandardsChapter 8 - FedRAMP Primer
Chapter 9 - The FedRAMP Cloud Computing Security RequirementsChapter 10 - Security Assessment and Authorization: Governance, Preparation, and Execution
Chapter 11 - Strategies for Continuous MonitoringChapter 12 - Cost-Effective Compliance using Security Automation
Chapter 13 - A Case Study for Cloud Service Providers