Cloud computing is changing the face of business, and expanding computing possibilities for organizations of all sorts and sizes. As with any new paradigm, there are some “kinks” to work through as organizations give up control and rely on vendors to manage tasks that were heretofore managed in-house. The U.S. Department of Commerce and National Institute of Standards and Technology recently issued guidelines for maintaining security and privacy in public cloud computing to help organizations (including the Federal Government) assess and find an appropriate balance between improved/expanded operations and adequate safety/controls. The report is available at http://csrc.nist.gov/publications/nistpubs/800-144/SP800-144.pdf (Guidelines on Security and Privacy in Public Cloud Computing, Special Publication 800-144). The report gives an overview of cloud computing and the security and privacy issues implicated by the increasing use of “the cloud.” It details threats, technology risks, and safeguards that organizations can take when using public cloud environments.