A MeriTalk survey of 150 government information technology leaders has showed that nearly 79 percent of respondent officials are not satisfied with the Federal Risk and Authorization Management Program to authorize cloud computing products for use at agencies.
MeriTalk said Monday the study also showed close to 17 percent did not include FedRAMP in their cloud considerations while 59 percent would likely use a non-compliant cloud product or service.
Fifty-five percent of federal officials and 65 percent of defense agencies do not believe FedRAMP has increased security, MeriTalk added.
Forty-one percent of respondents claim they do not not use another agency’s FedRAMP authority-to-operate, while 35 percent of agencies said they did not allow others to use their ATO and 26 percent were barred from using another agency’s ATO.
The General Services Administration launched efforts to restructure the cloud authorization program in March to address concerns, streamline the process for cloud service providers and provide provisional ATOs within three to six months.
MeriTalk noted 41 percent of government officials said they are not familiar with GSA’s plans.
Forty-seven percent want an clearinghouse where agencies can access and are required to accept all ATOs, while 27 percent recommend a change of leadership at GSA’s FedRAMP program management office, MeriTalk said.