USPS discovering compliance issues with cloud contracts

The Postal Service has some compliance issues with its cloud computing contracts.

The Postal Service has some compliance issues with itscloud computing contracts. A major reason why is because the agency isn’t applying a clear definition for what cloud computing is or should be. The Postal Service’s Inspector General says the agency requires its cloud contracts to be FedRAMP certified and meet the definition of a cloud system as described by the National Institute of Standards and Technology. When the IG took a look at some of its actual cloud contracts, it finds some of them don’t meet the definition criteria. The Postal Service also doesn’t have an enterprise-wide inventory of its cloud services. The IG recommends the agency solidify its definition of cloud, and change its non-complaint contracts to add new security measures.

Copyright © 2024 Federal News Network. All rights reserved. This website is not intended for users located within the European Economic Area.