Cloud Computing Security Requirements Guide (CC SRG)
DoD Cloud computing policy and the CC SRG is constantly evolving based on lessons learned with respect to the authorization of Cloud Service Offerings and their use by DoD Components. As such the CC SRG is following an "Agile Policy Development" strategy and will be updated quickly when necessary. In support of this strategy, DISA is offering a continuous public review option by accepting comments on the current version of the CC SRG at any time. Please use the comment matrix posted below. We would appreciate it if your comments are limited to critical issues and omissions or recommended coverage topics.
Submit all comment matrices and questions to firstname.lastname@example.org