DoD Cloud Authorization Process
UNCLASSIFIED1UNCLASSIFIEDDISA: TRUSTED TO CONNECT, PROTECT, AND SERVE!DoD Cloud Authorization ProcessDISA Cloud Assessment DivisionDISA RME/RE2 October 2022 UNCLASSIFIED2UNCLASSIFIEDDISA: TRUSTED TO CONNECT, PROTECT, AND SERVE!DISA Cloud Assessment Division The DISA Cloud Assessment Division (RE2) provides support to DoD Component Sponsors/Mission Owners through the pre-screening, assessment, validation, Authorization , and continuous monitoring of Cloud Service Offerings (CSO). They ensurethe Cloud Service Provider (CSP) and CSO meet DoD Cloud security requirements for a DoD Provisional Authorization (PA). They serve as technical reviewers on the FedRAMP Joint Authorization Board (JAB).UNCLASSIFIED3UNCLASSIFIEDDISA: TRUSTED TO CONNECT, PROTECT, AND SERVE!Provisional Authorization Memo Initial DoD Provisional Authorization (PA) The DoD Provisional Authorization (PA) is issued by the DISA Authorizing Official (AO) for a CSO based on FedRAMP and additional DoD security requirements (Impact Levels 4/5/6).
CSP review and approve SAP. DISA schedules Initial Planning Conference call. JVT: DISA SCA-R, Sponsor Analysts, CSP & 3PAO. Access to CSP document repository initiated. Initial Review of RAR, SSP, SSP Addendums, & documentation checklist for Readiness. Review and approve SAP. Validation begins with access to Security Package (SSP/SAR/POAM).
Download DoD Cloud Authorization Process
Information
Domain:
Source:
Link to this page:
Please notify us if you found a problem with this document: