The General Services Administration is in the process of analyzing industry’s recommendations for improving the Federal Risk and Authorization Management Program’s vetting procedures, Federal Times reported Wednesday.
GSA received over 60 responses to its “ideation challenge” solicitation released in July, which asked interested entities to identify issues involving FedRAMP scheduling, cost, reciprocity and awareness.
Ashley Mahan, the acting FedRAMP director, told attendees at a VMware event that the suggestions will help inform attempts to automate the program’s cloud security vetting procedures. She noted that the program has over 1,200 test cases for evaluating cloud security, and that the agency intends to consider emerging cybersecurity threats when ensuring a strong security posture and minimal network risk.
“We’re committed to continuously improve and evolve as a program,” she added.