Skip to main content

Focus on FedRAMP

JAB Prioritized CSPs and FedRAMP Connect Updates

The following Cloud Service Providers (CSPs) have been selected to work with the Joint Authorization Board (JAB) for a Provisional Authority to Operate (P-ATO) from our latest round of FedRAMP Connect: Okta - Identity as a Service (IDaaS) Splunk Sumo Logic These vendors were selected in accordance with our JAB Prioritization Guidance and Criteria document to work with the JAB...

Read More

FedRAMP Lessons Learned for Small Businesses

The FedRAMP PMO is committed to helping small businesses and startups navigate the FedRAMP authorization process and we want to highlight an important resource for small businesses on our website - Seven Lessons Learned for Small Businesses and Startups. The FedRAMP PMO conducted interviews with various companies that have obtained or are working to obtain a FedRAMP authorization. The goal...

Read More

FedRAMP Looks Back on a Successful FY2019

Fiscal Year 2019 was a year of achievement and progress for FedRAMP. Thank you for your collaboration over the past year. We look forward to 2020 as we streamline, simplify, and stay committed to continuous improvement.

Read More

FedRAMP Moves to Automate the Authorization Process

FedRAMP is excited to announce that the program has reached an important automation milestone. FedRAMP has worked closely with NIST and industry to develop the Open Security Controls Assessment Language (OSCAL), a standard that can be applied to the publication, implementation, and assessment of security controls. FedRAMP expects OSCAL will offer a number of benefits to streamlining and automating components...

Read More

Seeking Public Comments on the Draft Customer Implementation Summary (CIS) and Customer Responsibility Matrix (CRM) Templates

In response to Agency and CSP feedback, FedRAMP updated the Customer Implementation Summary/Customer Responsibility Matrix (CIS/CRM) templates to provide clearer directions, sample responses, and a more streamlined structure. Prior to making permanent changes to the templates, the program is seeking public comments on the draft templates from the FedRAMP community. The Control Implementation Summary and Customer Responsibility Matrix (CIS/CRM) is...

Read More

Page 2 of 26