6/30/15 Guidelines for organizations on planning and conducting Penetration Testing.
The FedRAMP PMO releases the June 2015 FedRAMP Newsletter.
6/3/15 Requirements for all vulnerability scans of CSP systems for JAB P-ATOs.
FedRAMP Ready CSPs
These systems are ready to begin the FedRAMP Security Assessment Framework and include cloud systems and open source builds.
FedRAMP In Process CSPs
These cloud systems are actively working with the government through the FedRAMP Security Assessment Framework.
FedRAMP Compliant CSPs
These cloud systems have have security packages reflecting the completion of the FedRAMP Security Assessment Framework.
Templates & Documents
FedRAMP templates and documents provide all the necessary detail an agency, CSP, or independent assessor needs to understand and complete to comply with FedRAMP requirements.
List of independent assessors accredited by A2LA and approved by FedRAMP that perform initial and periodic assessment of CSP systems per FedRAMP requirements.
Apply for Authorization
An initial step for CSPs interested in becoming FedRAMP compliant is completing a brief initiation request that provides summary information on their organization and cloud system.