product description page
Federal Cloud Computing : The Definitive Guide for Cloud Service Providers (Paperback) (Matthew Metheny)
about this item
Federal Cloud Computing: The Definitive Guide for Cloud Service Providers, Second Edition offers an in-depth look at topics surrounding federal cloud computing within the federal government, including the Federal Cloud Computing Strategy, Cloud Computing Standards, Security and Privacy, and Security Automation.
Users will learn the basics of the NIST risk management framework (RMF), with a specific focus on cloud computing environments, all aspects of the Federal Risk and Authorization Management Program (FedRAMP) process, and steps on how to cost-effectively implement the Assessment and Authorization (A&A) process, along with strategies for implementing Continuous Monitoring and enabling the Cloud Service Provider to address the FedRAMP requirement on an ongoing basis.
The completely updated Second Edition covers all the changes to FedRAMP, including clarifying guidance on the three paths for Cloud Service Providers to achieve FedRAMP compliance, an expanded discussion of the new FedRAMP Security Control, which is based on the NIST SP 800-53 Revision 4, and maintaining FedRAMP compliance through Continuous Monitoring. Further, a new chapter has been added on the FedRAMP requirements for Vulnerability Scanning and Penetration Testing.
- Provides a common understanding of the federal requirements as they apply to cloud computing
- Presents a targeted and cost-effective approach for applying the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF)
- Includes both technical and non-technical perspectives of the Federal Assessment and Authorization process that speaks across the organization
- Completely updated Second Edition covers all the current changes users need to achieve FedRAMP compliance