NR/L2/INF/02242/05
Information Security Manual: Module 05: Cloud Computing Security Principles
Organization: | NR |
Publication Date: | 3 December 2016 |
Status: | active |
Page Count: | 9 |
scope:
This module specifies Network Rail's information security requirements for cloud computing.
This module applies to all staff that are responsible for procuring and maintaining cloud services models including private, public, community and hybrid clouds.
Purpose
When data moves from centrally located servers to the cloud, the potential for confidential data to be compromised increases. Confidentiality, integrity and availability of data are at risk if appropriate measures are not put in place prior to selecting a suitable Cloud Service Provider. The purpose of this module is to reduce this risk by defining criteria for the selection of cloud services.
The application of this module is intended to help Network Rail achieve compliance with HM Government Service Design Manual for cloud security.
Document History
