Skip to main content
FEDRamp - The Federal Risk and Authorization Management Program

The Federal Risk and Authorization Management Program


FEDRamp - The Federal Risk and Authorization Management Program

In 2012, FEDRamp began providing guidance to government and corporate organizations offering a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services.

The core objectives are to reduce duplicity and increase efficiencies associated with security authorization processes and to reduce associated cost inefficiencies.

During development, creators collaborated closely with several cloud security and industry experts both within the public, private and government industry sectors. This includes government entities such as GSA, NIST, DHS, DOD, NSA, OMB – and the Federal CIO Council, and numerous other key cloud and infrastructure professionals.

There are three ways to be associated with the FedRAMP program:
Be a Federal Agency which utilizes FedRAMP
Be a Cloud Service Provider which becomes FedRAMP Security Authorized
Be a Third-Party Assessment Organization (3PAO) for the FedRAMP Accredited Assessor Program.

Seeking Clarity?

View the Cybersecurity Dictionary for top terms searched by your peers.

Explore the Dictionary

Related Assets

November 07, 2017

GDPR Part 3: GDPR and the Information Security Program

In this third and final part of the series, we’ll spend some time bringing GDPR and its various requirements back into the information security progra...

See Details

June 05, 2019

Cyber Digital Transformation: Cloud Threat Monitoring and Compliance as-a-Service

Apply continuous adaptive risk and threat analysis to multi-cloud environments to meet compliance and reduce security risk.

See Details

October 20, 2017

Top thoughts for GDPR Third-Party Management

Infosecurity Magazine | October 20, 2017 Your organization is responsible for the conduct of the third parties that store or process your EU citizen’...

See Details

How Can We Help?

Let us know what you need, and we will have an Optiv professional contact you shortly.

Privacy Policy

Stay in the Know

For all the latest cybersecurity and Optiv news, subscribe to our blog and connect with us on Social.


Join our Email List

We take your privacy seriously and promise never to share your email with anyone.

Stay Connected

Find cybersecurity Events in your area.