PaaS
Executive Summary
IBM Cloud for Government isauthorized:
• FedRAMP Moderate, DISAIL2
• Completing FedRAMP High accreditation, DISAIL4
• ISO 27001, SOC, ITAR, CJIS,PCI-DSS
• Agency ATOs include: DHS, DOA, DOE, DOI, FCC, USCIS,USFS
DISA Unclassified Authorizations
DISA authorizes unclassified cloud services at 3 impactlevels:
• 2 – includes all data cleared for public release, as well as some DoD private unclassified information not designated as Controlled Unclassified Information (CUI) or critical mission data, but the information requires some minimal level of access control (FedRAMPModerate)
• 4- accommodates CUI and/or other mission critical data to include that used in direct support of military or contingency operations (FedRAMPHigh+)
• 5- includes CUI that may require a higher level of protection than that afforded by Level 4, and unclassified National SecuritySystems
DISA Table of Impact Levels
| IMPACT LEVEL | INFORMATION SENSITIVITY | SECURITY CONTROLS | LOCATION | OFF-PREMISES CONNECTIVITY | SEPARATION | PERSONNEL REQUIREMENTS |
|---|---|---|---|---|---|---|
| 2 | PUBLIC or Non-critical Mission Information | FedRAMP v2 Moderate | US/US outlying areas or DoD on-premises | Internet | Virtual/Logical PUBLIC COMMUNITY | National Agency Check and Inquiries (NACI) |
| 4 | CUI OR Non-CUI Non-Critical Mission Information Non-National Security Systems | Level 2 + CUI-Specific Tailored Set | US/US outlying areas or DoD on-premises | NIPRNET via CAP | Virtual/Logical Limited “Public” Community Strong Virtual Separation Between Tenant Systems & Information | US Persons ADP-1 Single Scope Background Investigation (SSBI) ADP-2 National Agency Check with Law and Credit (NACLC) Non-Disclosure Agreement(NDA) |
| 5 | Higher Sensitivity CUI Mission Critical Information National Security Systems | Level 4 + NSS & CUI-Specific Tailored Set | US/US outlying areas or DoD on-premises | NIPRNET via CAP | Virtual/Logical FEDERAL GOV. COMMUNITY Dedicated Multi-Tenant Infrastructure Physically Separate from Non-Federal Systems Strong Virtual Separation Between Tenant Systems & Information |
|
| 6 | Classified SECRET National Security Systems | Level 5 + Classified Overlay | US/US outlying areas or DoD on-premises CLEARED/CLASSIFIED FACILITIES | SIPRNET DIRECT With DoD SIPRNet Enclave Connection Approval | Virtual/Logical FEDERAL GOV. COMMUNITY Dedicated Multi-Tenant Infrastructure Physically Separate from Non-Federal and Unclassified Systems Strong Virtual Separation Between Tenant Systems & Information | US Citizens w/Favorably Adjudicated SSBI & SECRET Clearance NDA |
IBM Cloud for GovernmentOverview
Multi-Region: US-East (VA) and US-West(TX)
• Available dedicated compute and storage resources in either bare metal or virtualizedofferings
• Triple network architecture public, private, and management traffic travel on separate networks, giving you unmatched control, security, and speed. The private network connects your services in all data centers, free of charge
• Support for private HSM, Firewall and IPS/IDSservices
• VMware certified platform supporting Cloud Foundation andHCX
IBM Cloud for GovernmentOverview
IBM Secure Virtualization
Platform demonstrated in the NIST Special Publication: TrustedCloud
• Uses Intel TXT hardware, VMWare, and HyTrust security software to protect workloads down to the baremetal
• Provides automated and continuous security monitoring to meet compliancerequirements
• Uses full encryption to verify the trusted state of workloads and control their cloud deployment to the data center, or individualserver
• Same security solution implemented by DoD agencies and NATO partners on premisetoday
Fill out our Contact Form or call us today at 844-859-9243. and let us know how we can help.
Download our SPEC sheets for more information:
Grable Consulting Services IBM Maximo Cloud Datasheet 03142017