Cloud Security Information Impact Level Matrix
Published, May 21, 2015
The DON Cloud Security Information Impact Level Matrix is intended to assist Mission Owners/Program Managers in determining security information impact levels as they apply to appropriate hosting environments.
Cloud security information impact levels are defined by the combination of: 1) the level of information to be stored and processed in the Cloud Service Provider environment; and 2) the potential impact of an event that results in the loss of confidentiality, integrity or availability of DoD data, systems or networks. DoD Mission Owners categorize mission information systems in accordance with DoDI 8510.01 (Risk Management Framework for DoD Information Technology) and the Committee on National Security Systems Instruction 1253 to select the impact level that most closely aligns with defined baselines.