Cloud Security Technical Reference Architecture
The purpose of the Cloud Security Technical Reference Architecture is to guide agencies in a coordinated and deliberate way as they continue to adopt cloud technology. This approach will allow the Federal Government to identify, detect, protect, respond, and recover from cyber incidents, while improving cybersecurity across the gov enterprise.
As outlined in the Executive Order, this document seeks to inform agencies of the advantages and inherent risks of adopting cloud-based services as they move closer to zero trust architecture. The Cloud Security Technical Reference Architecture also illustrates recommended approaches to cloud migration and data protection for agency data collection and reporting.