The Federal Risk and Authorization Management Program has added two new columns to the Plan of Actions and Milestones template to help agency partners track findings related to the Cybersecurity and Infrastructure
MoreThe Federal Risk and Authorization Management Program has received from a cloud service provider the first system security plan in a machine-readable format called Open Security Controls Assessment Language. FedRAMP expects the
More by Jane Edwards
The Federal Risk and Authorization Management Program has laid out requirements for cloud service providers and third-party assessment organizations with regard to completing annual assessments. FedRAMP said Wednesday it requires CSPs to
MoreThe Senate has approved a legislative package that would direct critical infrastructure operators and owners and federal civilian agencies to report major cyberattacks and ransomware payments to the Cybersecurity and Infrastructure Security
More by Jane Edwards
The Federal Risk and Authorization Management Program is soliciting comments on an updated white paper that reflects changes to threat-based scoring methodology and informs stakeholders of its potential applications. FedRAMP said Tuesday
More by Jane Edwards
The Federal Risk and Authorization Management Program (FedRAMP) has announced the release of updated Readiness Assessment Report (RAR) templates and guide for third-party assessment organizations. The updated RAR guide and templates seek
More by Jane Edwards
A bill cleared by the Senate Homeland Security and Governmental Affairs Committee may require the Government Accountability Office to report on the Federal Risk and Authorization Management Program, which aims to standardize
MoreThe Federal Risk and Authorization Management Program is seeking public comment on the initial draft of its baseline security measures that align with the National Institute of Standards and Technology’s updated cloud
More by Naomi Cooper
The Senate Homeland Security and Governmental Affairs Committee has approved a bipartisan bill that would improve and authorize the Federal Risk and Authorization Management Program for five years to help speed up
More by Jane Edwards
The General Service Administration seeks market information for the creation of a federated authentication service. GSA’s Technology Transformation Services (TTS) team requires a service that would authenticate users from multiple agencies to
More