How FedRAMP® is Governed
FedRAMP is governed by different executive branch entities that work in a collaborative manner to develop, manage, and operate the program. The governing entities of FedRAMP include:
Office of Management and Budget (OMB)
The governing body that issued the FedRAMP policy memo which defines the key requirements and capabilities of the program.
Chief Information Officer (CIO) Council
Disseminates FedRAMP information to Federal CIOs and other representatives through cross-agency communications and events.
National Institute for Standards and Technology (NIST)
Advises FedRAMP on Federal Information Security Modernization Act (FISMA) compliance requirements.
Federal Secure Cloud Advisory Committee (FSCAC)
Provides advice and recommendations to the GSA Administrator, the FedRAMP Board, and agencies on technical, financial, programmatic, and operational matters regarding secure adoption of cloud computing products and services.