"CISA Releases Cloud Services Guidance and Resources"

The Cybersecurity and Infrastructure Security Agency (CISA) has released the first series of final security guidance resources under its Secure Cloud Business Applications (SCuBA) project: the Extensible Visibility Reference Framework (eVRF) Guidebook and a Technical Reference Architecture (TRA) document. With input from the public comment period in 2022, the final guidance documents will help public and private entities in implementing cloud security and resilience best practices. The eVRF Guidebook provides an overview of the eVRF framework, which allows organizations to identify visibility data, mitigate threats, understand the extent to which products and services offer visibility data, and identify potential data gaps. Organizations can use the TRA Document as a security guide to adopting technology for cloud deployment, adaptable solutions, secure architecture, and zero trust frameworks. This article continues to discuss CISA's release of the first series of final security guidance resources under its SCuBA project. 

CISA reports "CISA Releases Cloud Services Guidance and Resources"