The Federal Risk and Authorization Management Program, or FedRAMP, applies to any cloud service or solution provider aiming to work with the U.S. federal government.
In 2011, the National Institute of Standards and Technology (NIST), the General Services Administration (GSA), the Department of Defense (DOD), the Department of Homeland Security (DHS) and other government agencies collaborated to develop the framework. The resulting government-wide program establishes a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services.
FedRAMP, like other federal frameworks such as FISMA, ties to the NIST 800-53 control library. However, FedRAMP includes additional controls regarding the unique aspects of cloud computing, enhancing the standard baseline controls.
Qmulos simplifies FedRAMP compliance in a few easy steps. To the right you can find a link to download the free product brief, addressing some of the confusion behind the new standard, as well as how our solution, Q-Compliance, can assist your organization in quickly becoming compliant and helping your organization and your chosen third-party auditor organization in assessing your level of compliance.