Skip to main content

 CALL US:    800-967-1004            SUPPORT: 410-884-1004

DoD Cloud Compliance

Making the DoD/FedRAMP Cloud Connection

 

As part of its FISMA cloud offering, GovDataHosting provides operational, management, and technical controls in accordance with the Department of Defense’s Risk Management Framework (RMF) as referenced on Department of Defense Instruction (DoDI) 8510.01 with the authority in DoD Directive (DoDD) 5144.02

In March of 2014, RMF for DoD IT replaced the former DoD Information Assurance Certification Accreditation Process (DIACAP). Since then, it manages the life-cycle cybersecurity risk for DoD IT and helps to integrate the Federal Risk and Authorization Management Program (FedRAMP), which offers a DoD-approved standardized approach to security assessment and authorization, as well as continuous monitoring.

The IT-CNP - GovDataHosting Cloud Platform, Hybrid Cloud has demonstrated compliance with the Federal Risk and Authorization Management Program (FedRAMP) Moderate baseline and has been granted a FedRAMP JAB Authorization. In accordance with DoD guidelines, a DoD Provisional Authorization (DoD PA) has been issued for the IT-CNP - GovDataHosting Cloud Platform and its Hybrid Cloud. Please contact our customer service for a copy of our DoD PA and to discuss your specific system risk categorization level.

 

 GovDataHosting can assist clients in achieving DoD FedRAMP cloud compliance.

 

Security in Just Six Steps

 

The RMP for DoD framework is composed of six steps:

  1. Categorize information systems
  2. Select Security Controls
  3. Implement Security Controls
  4. Assess Security Controls
  5. Authorize Information Systems
  6. Monitor Security Controls

What is Required?

 

In preparing RMF for DoD accreditation packages, the following documents are generally required:

  • System Categorization
  • System Description
  • System Boundary Diagram
  • Network Diagram and Dataflow
  • Risk Assessment (RA)
  • Implementation Plan
  • Configuration Management Plan (CMP)
  • System Security Plan (SSP)
  • System Contingency Plan (CP)
  • Security Testing & Evaluation (ST&E)

 

GovDataHosting is featured on the FedRAMP website as well as on DoD Defense Information Systems Agency (DISA) in the catalog of DoD approved cloud providers. 

Contact us today to learn how we can help your agency achieve RMF for DoD and FedRAMP certified compliance

Copyright 2017 IT-CNP, Inc. All rights reserved.