FedRAMP looks to NIST for security control refinements

From: GCN

By Sara Friedman

It’s not just the large agencies that are taking advantage of the cloud. The Federal Risk and Authorization Management Program has seen great interest from smaller agencies that want to get cloud services approved for government use. The number of agencies involved in the FedRAMP authorizations has jumped to 135, 40 of which have been added in the past year.

FedRAMP officials want to continue to make it easier for agencies to get cloud service providers approved.  The National Institute of Standards and Technology’s Open Security Controls Assessment Language, which speeds up the security controls assessment process through standardization and automation, will be available for testing by the end of this fiscal year, FedRAMP Director Matt Goodrich said at  the June 13 ATARC Federal Cloud and Data Center Summit.

Read Complete Article


Leave a Reply

Your email address will not be published.

Please Answer: *