The US Federal government launched the The Federal Risk and Authorization Management Program (FedRAMP) this week - a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services. The approach aims to provide a reusable, efficient framework that avoids redundant agency assessments. The initiative includes guidance on policy, key components & operational capabilities and department as well as agency responsibilities & requirements. More information and the full set of documents can be obtained from the FedRAMP site. |