FedRAMP® provides a standardized, reusable approach to security assessment and authorization for cloud service offerings.

Rev 5 Agency Authorization

The traditional FedRAMP Agency Authorization process is the only path to FedRAMP authorization today and it's not going away any time soon!

Learn more

20x Community Working Groups

FedRAMP 20x is building a new cloud-native approach to FedRAMP authorization with industry and entirely in public.

Participate

Latest Updates and Changelog

FedRAMP is moving fast and updating guidance and resources regularly. In order to keep our stakeholders informed about our changes in real-time, we maintain a changelog which documents relevant administration and program updates.

View the full changelog

November 18th, 2025
Blog
Published a new blog post.
- Key FedRAMP Updates After the Shutdown
November 18th, 2025
20x
Significant updates to 20x content, including more detailed phase two information and the addition of an official documentation page.
November 18th, 2025
Rev5
Refreshed the FedRAMP Rev5 documents, including deprecating out of date documents and creating an all new Continuous Monitoring Playbook.
- Rev5 Continuous Monitoring Playbook
- Updated Documents & Templates

FedRAMP at a Glance

Ready

71
In Process

77
Authorized

478

FedRAMP® provides a standardized, reusable approach to security assessment and authorization for cloud service offerings.

Rev 5 Agency Authorization

20x Community Working Groups

A new era of automation

Latest Updates and Changelog

Published a new blog post.

Significant updates to 20x content, including more detailed phase two information and the addition of an official documentation page.

Refreshed the FedRAMP Rev5 documents, including deprecating out of date documents and creating an all new Continuous Monitoring Playbook.

FedRAMP at a Glance