Skip to main content

Focus on FedRAMP

FedRAMP Marketplace Guidance Released

We receive thousands of questions through info@fedramp.gov, and one of the most popular topics is the FedRAMP Marketplace and which cloud capabilities are FedRAMP Ready, In Process, or Authorized. With over 220 industry partners engaged with the program, the FedRAMP Marketplace is a one-stop-shop in providing visibility into the FedRAMP community. The Marketplace serves as a searchable and sortable database...

Read More

Get to Know FedRAMP's Program Manager of Security Operations

As part of our spotlight series on the members of the FedRAMP PMO team, we wanted to introduce John Hamilton, our FedRAMP Program Manager of Security Operations. We sat down with John to learn about his background, his day-to-day operations, his priorities and goals, and his interests outside of work. FedRAMP PMO: What is your background? Prior to GSA, I...

Read More

Meet FedRAMP's Customer Success Manager

The FedRAMP PMO wants to give our readers a glimpse into the human side of the FedRAMP program by introducing all the members of the FedRAMP PMO leadership team. We’re diving into their backgrounds, goals & aspirations, daily operations, and hobbies outside of work. First, meet Ryan Hoesing, our FedRAMP Customer Success Manager. We sat down with Ryan to learn...

Read More

Best Practices for Multi-Agency Continuous Monitoring

Both Cloud Service Providers (CSPs) and Federal Agencies play a role in Continuous Monitoring. FedRAMP Authorized CSPs are required to perform Continuous Monitoring to maintain a sufficient security posture. Federal Agencies are obligated to review a CSP’s Continuous Monitoring artifacts to determine if an Authority-to-Operate (ATO) is appropriate over the life of the system. Completing Continuous Monitoring and managing multiple...

Read More

FedRAMP Tailored Lessons Learned

FedRAMP introduced the Tailored baseline for Low-Impact Software-as-a-Service (Li-SaaS) in 2017 to meet our stakeholders’ need for an expedited path for cloud authorization. FedRAMP’s fourth baseline - Tailored - empowers Agencies to partner with Cloud Service Providers (CSPs) and rationalize security requirements for low risk use cases of SaaS, transforming how the government authorizes cloud services. Tailored empowers Agencies to...

Read More

Page 1 of 24