Home / Tag Archives: cloud service provider

Tag Archives: cloud service provider

FedRAMP Issues 3 New Documents on Continuous Monitoring Process

The Federal Risk and Authorization Management Program has released three new documents to clarify its process for continuously monitoring FedRAMP-authorized cloud service providers. FedRAMP said Tuesday the new continuous monitoring documents include a draft of the “Automated Vulnerability Risk Adjustment Framework Guidance,” which is intended to help CSPs build and deploy …

Read More »

FedRAMP Issues New Documents, Updates to Optimize Continuous Monitoring Process

The Federal Risk and Authorization Management Program has released new documents and updated existing guides in an effort to streamline, clarify and optimize its continuous monitoring processes. FedRAMP said Wednesday the new and updated documents integrate feedback from cloud service providers and Joint Authorization Board review teams. The documents are intended to clarify certain elements …

Read More »

New DOJ Guide Urges Prosecutors to Seek Data Access Directly From Enterprise Users

The Justice Department has released new guidelines advising prosecutors to work directly with businesses when they need access to those enterprises’ data, instead of going through cloud service providers. Neal Suggs, Microsoft vice president and deputy general counsel, wrote in a blog post published Thursday that the guideline also describes practical considerations on the …

Read More »

DoD, Industry in Talks Over Cloud Security Requirements

The Defense Department is in talks with heads of cloud service providers on how to streamline cloud security requirements in a rulebook the Defense Information Systems Agency issued in 2015, Federal News Radio reported Thursday. DoD’s Cloud Security Requirements Guide offers information on security controls that should be adopted by cloud …

Read More »

FedRAMP Adds New Requirements for ‘In Process’ Cloud Platform Designation

The Federal Risk and Authorization Management Program has introduced new requirements for cloud service providers that aim to obtain FedRAMP “In Process” designation in cooperation with an authorizing government agency. Cloud vendors that receive In Process designation are actively pursuing FedRAMP authorization and are added to the FedRAMP Marketplace website, which provides information on …

Read More »

Matt Goodrich Unveils FedRAMP Authorization Baseline Cost Analysis

Matt Goodrich, director of the Federal Risk and Authorization Management Program at the General Services Administration, has said a mid-range cloud service provider would incur a total median cost of $2.25 million in order to get a FedRAMP authorization. Goodrich wrote in a blog entry posted Thursday a CSP would need to spend an additional $1 …

Read More »

DISA Seeks to Facilitate Cloud Adoption for Mission Owners Via DoD Provisional Authorization Process

The Defense Information Systems Agency has implemented a provisional authorization process for commercial cloud platforms in an effort to help Defense Department mission owners determine whether to leverage DISA’s assessment or subject a provisionally authorized cloud service to additional tests. DISA said Monday the Pentagon’s cloud assessment process usually runs for …

Read More »

Matt Goodrich: FedRAMP Rolls Out Updated Marketplace Dashboard

The Federal Risk and Authorization Management Program has unveiled the updated dashboard for the FedRAMP marketplace. FedRAMP Director Matt Goodrich wrote Wednesday FedRAMP selected TrueTandem to build the marketplace dashboard through the use of the Agile blanket purchase agreement from the General Services Administration’s 18F digital services team. TrueTandem won …

Read More »