This document discusses cloud security frameworks and enabling technologies. It begins with an overview of the cloud security lifecycle and government certification models. It then discusses the Security Content Automation Protocol (SCAP) and containers as enabling security technologies. The remainder of the document focuses on a case study of Westfield's MADFW/MITE infrastructure as a service platform and how it plans to transition to a platform as a service model using containerization to provide multi-tenancy.