The Federal Risk and Authorization Management Program (FedRAMP) is a government-wide program designed to ensure the security of cloud services used by federal agencies. It was established in 2011, and since then, it has revolutionized the way government agencies evaluate and authorize cloud services.
Administered by the GSA, the government-wide FedRAMP program provides a standardized approach to cloud service adoption and management. Agencies and their supporting contractors are required to adhere to FedRAMP security assessment, authorization, and continuous monitoring benchmarks.
The Federal Risk and Authorization Management Program (FedRAMP) supports the U.S. government’s cloud-smart policy by establishing consistent security standards across agencies and their contractors (such as cloud service providers).
The Federal Risk and Authorization Management Program, or FedRAMP, defines three distinct categorization levels to help government agencies and their supporting contractors implement the appropriate security controls required to protect U.S. government data.
Agencies and programs within the U.S. government are prime targets for cyberattack. The federal government maintains data that is essential to the function of our nation, the security of our people, and the stability of our healthcare and financial markets. Any unauthorized access, use, or disclosure of this data could cause significant harm and disruption.