Threatpost | The first stop for security news

The First Stop For Security News

Read More News


Ensuring Secure Cloud Computing for the Federal Government
  • FedRAMP Agency Authorization Process – Tips, Tricks, and Best Practices
    Continuing our efforts to enable transparency for Agencies and Cloud Service Providers (CSPs) alike, the FedRAMP PMO is excited to now provide materials on proven best practices for completion of the FedRAMP Agency Authorization process. The goal of these materials is to provide CSPs and Agencies with guidance that aligns their roles and responsibilities in […]
  • New Third Party Assessment Organizations (3PAOs) Training Series
    The FedRAMP PMO is pleased to announce the Third Party Assessment Organization (3PAO) Training Series. The training series provides 3PAOs and other interested stakeholders with a deeper understanding of the FedRAMP program requirements and the level of effort (LOE) required to satisfactorily plan and perform a FedRAMP security assessment. The goal of this new 300 […]
  • FedRAMP Tailored Available for Use
    We are excited to announce our release of the FedRAMP Tailored Baseline for Cloud Service Providers (CSPs) with Low-Impact Software- as-a-Service (LI-SaaS) Systems!  FedRAMP Tailored was developed to support industry solutions that are low risk and low cost for agencies to deploy and use. Additionally, FedRAMP Tailored: Creates a faster, streamlined process for systems that […]
  • FedRAMP Acquisition FAQs
    In an effort to help agencies continue to adopt secure cloud technologies, FedRAMP has been identifying ways to ensure that agencies appropriately require FedRAMP in their acquisition process as they procure cloud-based products. In support of this effort, the FedRAMP PMO worked with the Office of Management and Budget (OMB) and the Office of Federal […]
  • Case Study: NSF Achieved an Agency Authorization in Four Months
    Over the last two years, we have evolved the way we engage with the FedRAMP community. Throughout this transformation we have kept three goals in mind: reduce the authorization timeline without compromising security rigor, increase transparency, and strengthen the FedRAMP community/marketplace. One of the FedRAMP PMO’s critical work streams in meeting these goals is rooted […]
  • Finding an Initial Authorizing Agency
    The Agency Authorization process is the most popular route for CSPs to take when working toward a FedRAMP Authorization. In fact, 65 percent of authorized CSPs have an Agency ATO. The Agency Authorization affords  a CSP to work one-on-one with one Agency through the review process; the JAB Authorization requires a CSP to work with […]
  • How FedRAMP Supports Agencies
    There are a number of ways the FedRAMP team works with Agencies at various stages of the authorization process, as well as during continuous monitoring (post ATO) to ensure they have the information they need to make the appropriate risk-based decisions for their organizations. Here are a few of the ways that the FedRAMP team […]
  • FedRAMP at Five
    We are excited to share our FedRAMP At Five graphic, celebrating over five years of the FedRAMP program; it’s accomplishments, impacts, and continued activities. Building on these milestones, we hope to continue our trend of exponential growth, innovative process improvements, and collaboration among the community of government and private industry. While we continue to look […]
  • Business Case Due Date Extended – Set up call with PMO for feedback!
    Based on the large number of requests for calls with the FedRAMP PMO and the need for more time to gather demand verification, we have decided to extend the FedRAMP Business Case due date to August 31st at 5:00pm eastern. The FedRAMP PMO wants to support CSPs and help them submit the best Business Case […]
  • New Requirements for Agency “FedRAMP In Process” Designation
    We recently released updated guidance for Cloud Service Providers (CSPs) on how to obtain the “FedRAMP In Process” designation, specific to FedRAMP Agency Authorizations. Once a CSP is deemed as “FedRAMP In Process,” they are placed on the FedRAMP Marketplace, which highlights Cloud Service Offerings (CSOs) with FedRAMP designations (e.g. FedRAMP Ready, FedRAMP In Process […]

Read More FedRamp News

Read More News