February 2016 FedRAMP PMO Newsletter
February 24 | 2016
Reader Submission: Case for using FedRAMP
Early in my federal security experience, I supported a government application hosting data center enclave as a security configuration manager for a large internet-facing government system. This required understanding many FISMA, NIST, and DISA controls and security configurations. I also had to verify that the systems in the data center were operating properly to these control requirements, which meant sending continuous monitoring reports to federal agencies.
New 3PAOs
The PMO has added two new Third Party Assessment Organizations (3PAOs) to its roster of accredited independent assessors.
MBL Technologies and RSM US LLP are available for use by agencies and Cloud Services Providers (CSPs). The American Association for Laboratory Accreditation (A2LA) accredits FedRAMP 3PAOs with the FedRAMP PMO providing final approval. Please contact A2LA for more information on becoming an accredited FedRAMP 3PAO.
We Want to Hear from You!
In the past year, the FedRAMP PMO has released five training courses. Now we want to know what you think about them. Take this short survey and let us know what you think about our course offerings.
FedRAMP in the News:
-
Matt Goodrich: Status check for FedRAMP’s cloud services program
-
Chad Woolf: AWS guidance aims to help agencies secure cloud network connections
-
AWS testing cloud and network security initiative for federal agencies
-
AWS Issues Guidance on Agency Readiness for Trusted Internet Connection
-
Cornerstone OnDemand (CSOD) receives FedRAMP authorization from US Federal government
-
Cornerstone OnDemand secures FedRAMP approval for talent management platform
-
Cornerstone OnDemand losses increase, but FedRAMP approval won
-
IBM Achieves Highest U.S. Defense Information Systems Agency Authorization for Cloud Services
-
FedRAMP and CDM offer a unified path to security in the cloud
-
Government Agencies Need to Engage in Cloud Security Due Diligence
-
Cybersecurity & Healthcare: Does Cybersecurity Act Help or Hurt?
-
TS to preview expanded Federal IT solutions at Tower Club Reception
-
Decision Lens obtains FedRAMP certification for cloud-based software; John Kealey comments