What is Federal Risk and Authorization Program (FedRAMP)? - Definition from WhatIs.com

Definition

Federal Risk and Authorization Program (FedRAMP)

Part of the Government IT glossary:

The Federal Risk and Authorization Program (FedRAMP) is a risk management program that provides a standardized approach for assessing and monitoring the security of cloud products and services.

FedRAMP was created to support the government’s cloud computing plan.The program is intended to facilitate the adoption of cloud computing services among federal agencies by providing cloud service providers (CSPs) with a single accreditation that could be used by all agencies. The goal of FedRAMP is to reduce the time and money that individual agencies would otherwise have to spend on assessing a cloud provider's security. Certifications are based on a unified risk management process that includes security requirements agreed upon by the federal departments and agencies.

Although the FedRAMP certification process is quite intensive, qualified CSPs are eligible to work with government agencies, and non-government customers may be more confident in a certified CSP’s approach to security.

See also: FedRAMP 3PAO, Federal Cloud Computing Initiative,  FISMA, NIST 800 Series

This was last updated in May 2014
Posted by: Margaret Rouse

Related Terms

Definitions

  • transparency

    - Transparency, in the context of governance, means being open and honest in all official activities. The implication is that all activities are scrupulous enough that they could bear public scrutiny. (WhatIs.com)

  • accountability

    - Accountability means being held responsible or answerable for one's actions (or perhaps lack of action where one should have been taken). Accountability and transparency are generally considered th... (WhatIs.com)

  • Centers for Disease Control and Prevention (CDC)

    - Promoting a healthy general public and sharing data about chronic diseases are main goals of the Centers for Disease Control and Prevention (CDC). (SearchHealthIT.com)

Glossaries

  • Government IT

    - Terms related to government IT, including definitions about specific federal, state and local government programs as well as words and phrases about policy and compliance.

  • Internet applications

    - This WhatIs.com glossary contains terms related to Internet applications, including definitions about Software as a Service (SaaS) delivery models and words and phrases about web sites, e-commerce ...

Ask a Question About Federal Risk and Authorization Program (FedRAMP)Powered by ITKnowledgeExchange.com

Get answers from your peers on your most technical challenges

Tech TalkComment

Share
Comments

    Results

    Contribute to the conversation

    All fields are required. Comments will appear at the bottom of the article.