GSA Assessing Industry Suggestions for FedRAMP Operational Improvement

Jeff Brody

The General Services Administration is in the process of analyzing industry’s recommendations for improving the Federal Risk and Authorization Management Program’s vetting procedures, Federal Times reported Wednesday.

GSA received over 60 responses to its “ideation challenge” solicitation released in July, which asked interested entities to identify issues involving FedRAMP scheduling, cost, reciprocity and awareness.

Ashley Mahan, the acting FedRAMP director, told attendees at a VMware event that the suggestions will help inform attempts to automate the program’s cloud security vetting procedures. She noted that the program has over 1,200 test cases for evaluating cloud security, and that the agency intends to consider emerging cybersecurity threats when ensuring a strong security posture and minimal network risk.

“We’re committed to continuously improve and evolve as a program,” she added.

You may also be interested in...


DOD Opens Cloud Database on Radiation-Hardened Microelectronics; Rich Ryan Quoted

Rich Ryan, director for international programs, nuclear forensics, resiliency and survivability in the office of the deputy assistant secretary of defense for nuclear matters, said the U.S. military has opened a cloud-based library to support the protection of microelectronics used in nuclear systems. The Department of Defense handles strategic deterrence through its nuclear triad and space systems, whose electronic components can be vulnerable to ionized radiation, electromagnetic pulse and other threatening types of stimulus.