Tag Archives: Federal Risk and Authorization Management Program

IT Alliance for Public Sector Issues Cybersecurity Recommendations for State Govt Agencies

A division of the Information Technology Industry Council has issued a document that details six recommendations to help state and local government agencies protect their digital infrastructure from cyber threats. The IT Alliance for Public Sector’s State Cybersecurity Principals and Best Practices document calls on state governments to establish partnerships with industry through …

Read More »

MeriTalk: 79% of Federal IT Officials Doubt FedRAMP Process

A MeriTalk survey of 150 government information technology leaders has showed that nearly 79 percent of respondent officials are not satisfied with the Federal Risk and Authorization Management Program to authorize cloud computing products for use at agencies. MeriTalk said Monday the study also showed close to 17 percent did not include FedRAMP in their cloud considerations while …

Read More »

Rep. Jason Chaffetz: Agencies Strive to Meet Security Updates Deadline

Rep. Jason Chaffetz (R-Utah), chairman of the House Oversight and Government Reform Committee, has pointed up the struggle of various agencies in implementing security patches on time for critical vulnerabilities, Federal News Radio reported Wednesday. Meredith Somers writes Chaffetz told committee members at a hearing Wednesday that 39 out of more than 360 vulnerabilities …

Read More »

Ashley Mahan: FedRAMP Adopts ‘Open-Door Policy’ to Help Address Agency Cloud IT Needs

Ashley Mahan, agency evangelist for the Federal Risk and Authorization Management Program, told Federal Times in an interview published Wednesday she will reach out to agencies that need assistance to use FedRAMP-compliant cloud products and services. “We have a very open-door policy,” Mahan said to Federal Times reporter Aaron Boyd. She added the FedRAMP team considers …

Read More »

FedRAMP PMO to Revamp Program’s Cloud Tech Assessment Process

A Federal Risk and Authorization Management Program office plans to add a “readiness capabilities assessment” to the FedRAMP process in an effort to help vendors demonstrate their cloud technology and service offerings early on. The revamped process will require cloud service providers who seek a FedRAMP Ready status to complete a system evaluation with a third-party assessment organization …

Read More »

FedScoop: California Seeks FedRAMP Certification for State’s Cloud Service

California’s department of technology has applied for a certification to cover the state’s cloud service offerings through the U.S. General Services Administration‘s Federal Risk and Authorization Management Program, Fedscoop reported Tuesday. Alex Koma writes the state’s Chief Information Officer Carlos Romero announced a pending application of CalCloud for the FedRAMP certification that would make California the …

Read More »

Matt Goodrich: FedRAMP Training Enrollees Tripled Over 6 Months

The U.S. General Services Administration has concluded a six-month study of the government-wide, cloud computing-focused Federal Risk and Authorization Management Program to gather feedback from clients on the initiative. FedRAMP had a 340-percent increase in training enrollees and the number of authorizations rose by 50 percent, FedRAMP Director Matt Goodrich wrote in a GSA blog post released Thursday. …

Read More »

Matt Goodrich: GSA to Work on FedRAMP Authorization Process, Program Transparency

Matt Goodrich, director of the Federal Risk and Authorization Management Program at the General Services Administration, has said stakeholders believe the program is a potential “market maker” and has influenced how industry gauges cloud security. He wrote in a blog entry posted Wednesday that cloud service providers, third-party assessors, government agencies and others have …

Read More »