Department of Defense (DOD) Impact Level 5 (IL5)

This topic describes how Snowflake supports customers with DOD Cloud Computing SRG compliance requirements.

Understanding DOD Cloud Computing SRG compliance requirements

The Department of Defense (DOD) Cloud Computing Security Requirements Guide (SRG) outlines the security model and controls for the DOD’s use of cloud computing. The U.S. military creates, stores, and operationalizes massive amounts of sensitive data. Protecting that data is a strategic priority and is the focus of the DOD Cloud Computing SRG framework. This framework is used to categorize information systems and data and to indicate the security requirements that data is subject to. Snowflake has received Provisional Authorization (PA) by the Defense Information Systems Agency (DISA) to operate at Information Impact Level 5 (IL5) on AWS GovCloud. This IL5 authorization allows Snowflake to offer authorized solutions to organizations requiring the highest levels of protection for Controlled Unclassified Information (CUI) within the DOD and related agencies.

For more information about the service offerings that are currently authorized, see U.S. Regions Supporting Public Sector Workloads.

You can view the latest Snowflake DOD Cloud Computing SRG IL5 authorizations within the Current Authorized CSOs website.

Agencies may download Snowflake’s DoD package from eMASS.

Note

If your Snowflake account is in a U.S. government region and you want to access data products that are offered privately or on the Snowflake Marketplace, or offer listings either privately or on the Snowflake Marketplace, you must review and acknowledge a cross-region disclaimer for your organization.

For details, see: