cloud migration

DISA’s best practices for cloud migration

The Defense Information Systems Agency recently released “Best Practices Guide for Department of Defense Cloud Mission Owners” for those planning to migrate existing systems from physical environments to the cloud. 

The guide follows the release of three other documents in July regarding cloud computing security requirements.

The new best practices guide is not meant to make policy or vendor recommendations. Rather, it provides knowledge gained from DOD cloud pilots, specifically, DISA’s Information Assurance Support Environment and the Army’s DOD Environment, Safety and Occupational Health Network and Information Exchange.

It includes information on IP standards, domain name servers, to storage capacity to assessment and authorization.

Among the lessons learned is advice to mission owners not to get caught up in worrying about selecting the wrong type of cloud service offering for infrastructure as a service as cloud service providers will offer several choices and changing is easy.  For bandwidth usage estimation, DISA suggested that mission owners should multiply initial estimates by four.  DISA noted that since bandwidth is metered, overestimates are not an issue, but said that owners should review usage quarterly.   

Read the full report here.

About the Author

Mark Pomerleau is a former editorial fellow with GCN and Defense Systems.


  • Russia prying into state, local networks

    A Russian state-sponsored advanced persistent threat actor targeting state, local, territorial and tribal government networks exfiltrated data from at least two victims.

  • Marines on patrol (US Marines)

    Using AVs to tell friend from foe

    The Defense Advanced Research Projects Agency is looking for ways autonomous vehicles can make it easier for commanders to detect and track threats among civilians in complex urban environments without escalating tensions.

Stay Connected