Share best practices, tips & tricks and discuss digital communication as it applies to your daily government lives.
Reach more people and get those people to take action.
Why is FedRAMP Important?
March 30, 2016 at 4:12 pm #255445
FedRAMP is a term that cybersecurity and cloud experts are familiar with. What is it? FedRAMP stands for Federal Risk and Authorization Management Program. It was established in 2012 as a government-wide program to provide a standardized approach to security assessment, authorization and continuous monitoring for cloud products.
The General Services Adminsitration (GSA), National Institute of Standards and Technology (NIST), Department of Homeland Security (DHS), Department of Defense (DOD), National Sercurity Agency (NSA), Office of Management and Budget (OMB) and the Federal Chief Information Officer CIO are the current agencies taking the first steps in the FedRAMP process. Even with all these agencies, it is challenging which is why GovDelivery hosted a breakfast series about FedRAMP to help.
At GovDelivery’s recent breakfast series, Cloud Security 101: Why FedRAMP Matters to You, we heard from Matt Goodrich, Director for the FedRAMP at GSA, Bob Ainsbury, COO at GovDelivery and Gerry Hansen, VP of Cloud Operations at GovDelivery. They impressed the importance of FedRAMP and explained how it works to improve government cloud procurement.
“Security matters more than ever,” said Ainsbury. citing recent federal reports, he said there was a 1,121 percent increase in federal agency security incidents from 2006 to 2014. The average total cost of a data breach is $6.5 million.
So with these statistics, what are agencies doing to improve security matters? “The current risk management approach is redundant, inconsistent, time consuming, costly and inefficient to cloud adoption,” said Goodrich. With FedRAMP, agencies can save time and money, improve real-time security, provide a uniform approach and enhance transparency between government and Cloud Service Providers (CSPs).
That’s why more people are taking notice of and leveraging FedRAMP. It increases transparency, consensus building and stakeholder trust and buy-in by providing a standardized approach to security assessment. It exists to protect taxpayer information, save money and modernize government. As FedRAMP continues to grow, these benefits will keep growing.
Okay, so what should agencies focus on now that FedRAMP is here? FedRAMP will be hosting a series of events to roll out their redesigned process and go over the key elements as noted on their website. Feedback is important to give because that is how FedRAMP will continue to improve.
FedRAMP is a term we will keep hearing about in the future while it continues to move forward with improving processes from the feedback they have received from partners. So, keep your ears open for more news about FedRAMP. To gain more information, please visit https://www.fedramp.gov/.
You must be logged in to reply to this topic.