FedRAMP — short for the Federal Risk and Authorization Management Program — was created in 2011, to implement standardization for cloud services used by federal agencies. It’s built on the back of FISMA, legislation passed in 2002, to ensure that federal agencies are meeting a regulated minimum when it comes to IT security.
In other words, FedRAMP exists to regulate which cloud services agencies can and can’t use.

Starting in 2012, all federal agencies considering new technology solutions had to work with FedRAMP-authorized cloud service providers (CSP). The same restrictions extended to existing technology solutions starting in 2014,  and now there are more than 150 different FedRAMP authorized CSPs with provisional …

Converting from On-Premise to FedRAMP Compliant Cloud Software Read more »

There are several benefits to working with a cloud service offering from a FedRAMP authorized vendor. There are cost savings in shifting to the cloud and a highly visible security process,  and the FedRAMP process makes it possible to evaluate previously vetted offerings, …

Best Practices for Adopting a Cloud Service Offering in Federal Agencies Read more »