The list of accredited 3PAOs for the FedRAMP program has been released.
What is FedRAMP?
“The Federal Risk and Authorization Management Program (FedRAMP) is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services.”
What are the goals of FedRAMP ?
“Accelerate the adoption of secure cloud solutions through reuse of assessments and authorizations. Increase confidence in security of cloud solutions. Achieve consistent security authorizations using a baseline set of agreed upon standards to be used for Cloud product approval in or outside of FedRAMP. Ensure consistent application of existing security practices. Increase confidence in security assessments. Increase automation and near real-time data for continuous monitoring.”
What is a 3PAO?
3PAOs is a clever acronym for Third Party Assessment Organizations.
Why should I care?
“As a part of the FedRAMP process, cloud service providers (CSPs) must use a FedRAMP approved third party assessor to independently validate and verify that they meet the FedRAMP requirements.”
This means that if you want your cloud service to be eligible to be used by the government, it must be approved an accredited 3PAO.
In short, the government is serious about moving to the cloud. FedRAMP is attempting to create a standardized security assessment process to facilitate the adoption. Contact a 3PAO, seize the opportunity to become eligible for government contracts, and expand your business.
Learn more about FedRAMP’s 3PAOs and Cloud Service Providers.
The 9 accredited organizations are:
- COACT, Inc.
- Department of Transportation (DOT) Enterprise Service Center (ESC)
- Dynamics Research Corporation (DRC)
- J.D. Biggs and Associates, Inc.
- Knowledge Consulting Group, Inc.
- Logyx LLC
- Lunarline, Inc.
- SRA International, Inc.
- Veris Group, LLC
Keep up with the Latest in Cloud
Check out our Resources Center for cloud industry news, research, webinars, and more.