FedRAMP to Release New Standards Draft for High-Impact Systems

Matthew Goodrich
Matthew Goodrich

The Federal Risk and Authorization Management Program plans to release a draft document on cloud services standards for high-impact systems this month due to demand from government agencies, Federal News Radio reported Friday.

Jason Miller writes that FedRAMP Acting Director Matt Goodrich pointed to the increasing adoption of cloud and the Department of Homeland Security‘s continuous diagnostics and mitigation program as factors that are driving demand for a high baseline standard.

The draft will be available for government and industry comment before FedRAMP finalizes the high baseline in 2015, the report said.

“What we’ve decided to do… is we’re gathering some of the internal government stakeholders that have the type of high systems that this would apply to,” Goodrich told the station in an interview.

Miller reports that the future standard will apply to non-classified, high-impact systems as defined under the Federal Information Security Management Act, including those of the Defense Department and DHS.

You may also be interested in...

David McKeown

David McKeown: DOD Eyes Creation of Zero-Trust-Focused Portfolio Office

David McKeown, the Department of Defense's (DOD) equivalent of a chief information security officer, said DOD is looking to establish a portfolio management office that specializes in zero-trust cybersecurity. The office's creation would help DOD centralize and manage efforts to implement a zero-trust architecture, which strictly imposes requirements before one is able to access the defense network.

Leave a Reply

Your email address will not be published. Required fields are marked *