https://armypubs.army.mil/epubs/DR_pubs/DR_a/ARN42224-PPM_CIO-023-000-WEB-1.pdf
UNCLASSIFIED
DEPARTMENT OF THE ARMY
CHIEF INFORMATION OFFICER
107 ARMY PENTAGON
WASHINGTON DC 20310-0107
EC-GOV-CS-023
SAIS-EC (25-1rrrr) 26 September 2024
MEMORANDUM FOR SEE DISTRIBUTION
SUBJECT: Headquarters Department of the Army Cloud Army Governance Policy
1. References: See enclosure
2. Purpose. This memorandum is to document the requirement for all Army applications
planning to leverage any cloud compute and store to follow the Cloud Modernization Approval
Process (CMAP) and establish a Tenant Agreement.
3. Background.
a. The CMAP serves as a reference for ensuring compliance with reference 1a and
reference 1b.
b. The CMAP is the authoritative process to leverage cloud for any compute and store (i.e.
IaaS, PaaS, or SaaS).
c. CMAP performs the following functions:
(1) Provides a clear path to Army modernization goals.
(2) Validates Army organizations are complying with Department of Defense and
Headquarters Department of the Army (HQDA) policies.
(3) Enables access to resources, training, and expertise in cloud, software, and data
services.
(4) Creates a baseline in cloud architectures and technical services.
(5) Establishes cARMY waivers and associated annual reporting requirements.
d. The CMAP describes the Enterprise Cloud Management Agency (ECMA) governance
strategy and approval processes that Army organizations must follow.
e. The Tenant Agreement defines the principles and responsibilities by which the
ECMA operates and interacts with the System Owner.
UNCLASSIFIED
UNCLASSIFIED
SAIS-EC (25-1rrrr)
SUBJECT: Headquarters Department of the Army Cloud Army Governance Policy
f. The ECMA is responsible for managing the tenant agreements for all tenants within
cARMY.
g. Copies of the CMAP, Tenant Agreement and other ECMA documentation are
available in the cARMY Information Portal at https://armyeitaas.sharepoint-
mil.us/teams/ECMAcARMY/.
4. Guidance. Effective immediately, all Army applications planning to leverage cloud compute
and store services will work with ECMA to determine if they follow the CMAP process to
become a cARMY tenant or be granted a waiver for alternative hosting environments.
5. Points of contact:
a. CIO Policy Inbox: usarmy.pentagon.hqda-cio.mbx.policy-inbx@army.mil.
b. ECMA Inbox: armycloud@army.mil.
c. ECMA Cybersecurity: Ms. Rosalynn Pittman, Chief, ECMA Cloud Cybersecurity
Division, 571-644-8631 or rosalynn.s.pittman.civ@army.mil.
d. ECMA CMAP: Ms. Pushpa Jayapal, Chief, ECMA Cloud Business Office, 703-839-0196
or Pushparani.jayapal.civ@army.mil.
Digitally signed by
GARCIGA.LE GARCIGA.LEONEL.T.1
ONEL.T.118 186170411
Date: 2024.09.26
6170411 12:31:54 -04'00'
Encl LEONEL T. GARCIGA
Chief Information Officer
DISTRIBUTION:
Principal Officials of Headquarters, Department of the Army
Commander
U.S. Army Forces Command
U.S. Army Training and Doctrine Command
U.S. Army Materiel Command
U.S. Army Futures Command
U.S. Army Pacific
U.S. Army Europe and Africa
U.S. Army Central
U.S. Army North
(CONT)
2
UNCLASSIFIED
UNCLASSIFIED
SAIS-EC (25-1rrrr)
SUBJECT: Headquarters Department of the Army Cloud Army Governance Policy
DISTRIBUTION: (CONT)
U.S. Army South
U.S. Army Special Operations Command
Military Surface Deployment and Distribution Command
U.S. Army Space and Missile Defense Command/Army Strategic Command
U.S. Army Cyber Command
U.S. Army Medical Command
U.S. Army Intelligence and Security Command
U.S. Army Corps of Engineers
U.S. Army Military District of Washington
U.S. Army Test and Evaluation Command
U.S. Army Human Resources Command
U.S. Army Corrections Command
U.S. Army Recruiting Command
Superintendent, U.S. Military Academy
Commandant, U.S. Army War College
Director, U.S. Army Civilian Human Resources Agency
Executive Director, Military Postal Service Agency
Director, U.S. Army Criminal Investigation Division
Director, Civilian Protection Center of Excellence
Director, U.S. Army Joint Counter-Small Unmanned Aircraft Systems Office
Superintendent, Arlington National Cemetery
Director, U.S. Army Acquisition Support Center
CF:
Principal Cyber Advisor
Director of Enterprise Management
Director, Office of Analytics Integration
Commander, Eighth Army
3
UNCLASSIFIED
UNCLASSIFIED
REFERENCES
a. DISA memorandum (Army Enterprise Cloud Service and Modernization), 15 January 2021.
Available at https://www.milsuite.mil/book/DOC-923616.
b. HQDA EXORD 009-20 (Army Data Plan Implementation in Support of Cloud Migration),
including Annexes A-D, 15 November 2019. Available at
https://g357.army.pentagon.mil/od/EXORD1.
c. DoDI 8500.01 (Cybersecurity). Available at https://www.esd.whs.mil/DD/DoD-Issuances/.
d. DoDI 8510.01 (Risk Management Framework for Information Technology (IT)). Available at
https://www.esd.whs.mil/DD/DoD-Issuances/.
e. DoD Cloud Computing Security Requirements Guide, Version 1, Release 4, 14 January
2022. Available at https://public.cyber.mil/dccs/dccs-documents/.
f. AR 25-1 (Army Information Technology).
g. AR 25-2 (Army Cybersecurity).
h. DA PAM 25-2-14 (Risk Management Framework for Army Information Technology).
i. ECMA (Cloud Modernization Approval Process (CMAP) Guidance). Available at
https://armyeitaas.sharepoint-mil.us/teams/ECMAcARMY/.
j. CIO and ECMA plan (The U.S. Army Cloud Plan), October 2022. Available at
https://armyeitaas.sharepoint-mil.us/teams/ECMAcARMY/.
ENCLOSURE
UNCLASSIFIED