Book description
Federal Cloud Computing: The Definitive Guide for Cloud Service Providers, Second Edition offers an in-depth look at topics surrounding federal cloud computing within the federal government, including the Federal Cloud Computing Strategy, Cloud Computing Standards, Security and Privacy, and Security Automation.
You will learn the basics of the NIST risk management framework (RMF) with a specific focus on cloud computing environments, all aspects of the Federal Risk and Authorization Management Program (FedRAMP) process, and steps for cost-effectively implementing the Assessment and Authorization (A&A) process, as well as strategies for implementing Continuous Monitoring, enabling the Cloud Service Provider to address the FedRAMP requirement on an ongoing basis.
This updated edition will cover the latest changes to FedRAMP program, including clarifying guidance on the paths for Cloud Service Providers to achieve FedRAMP compliance, an expanded discussion of the new FedRAMP Security Control, which is based on the NIST SP 800-53 Revision 4, and maintaining FedRAMP compliance through Continuous Monitoring. Further, a new chapter has been added on the FedRAMP requirements for Vulnerability Scanning and Penetration Testing.
- Provides a common understanding of the federal requirements as they apply to cloud computing
- Offers a targeted and cost-effective approach for applying the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF)
- Features both technical and non-technical perspectives of the Federal Assessment and Authorization (A&A) process that speaks across the organization
Table of contents
- Cover image
- Title page
- Table of Contents
- Copyright
- Dedication
- About the Author
- About the Technical Editor
- Foreword by William Corrington
- Foreword by Jim Reavis
- Chapter 1. Introduction to the federal cloud computing strategy
- Chapter 2. Cloud computing standards
- Chapter 3. A case for open source
- Chapter 4. Security and privacy in public cloud computing
- Chapter 5. Applying the NIST risk management framework
- Chapter 6. Risk management
- Chapter 7. Comparison of federal and international security certification standards
- Chapter 8. FedRAMP primer
- Chapter 9. The FedRAMP cloud computing security requirements
- Chapter 10. Security testing: Vulnerability assessments and penetration testing
- Chapter 11. Security assessment and authorization: Governance, preparation, and execution
- Chapter 12. Strategies for continuous monitoring
- Chapter 13. Continuous monitoring through security automation
- Chapter 14. A case study for cloud service providers
- Index
Product information
- Title: Federal Cloud Computing, 2nd Edition
- Author(s):
- Release date: January 2017
- Publisher(s): Syngress
- ISBN: 9780128096871
You might also like
book
“Pay As You Wish” Pricing
This Element is an excerpt from Smart Pricing (ISBN: 9780131494183) by Jagmohan Raju and Z. John …
book
Global Dimensions of Public Administration and Governance: A Comparative Voyage
A comparative, interdisciplinary examination of the mechanisms behind public administration Global Dimensions of Public Administration and …
book
Research in the Decision Sciences for Global Business: Best Papers from the 2013 Annual Conference
This volume brings together important new research in decision science, capturing the crucial role of local …
book
Mastering Services Pricing
The definitive guide on how to price services to deliver profit, fund for product development and …