In 2011, the Office of Management and Budget (OMB) issued a memo declaring that cloud services leveraged by Federal agencies must comply with FedRAMP requirements by 2014.
While this might seem like more red tape and hoops to jump through, it’s actually quite helpful. FedRAMP exists to establish a minimum baseline for CSPs when conducting security assessments. This serves two purposes: 1.) It ensures that government data residing “in the cloud” is guarded by an accepted set of baseline security controls. 2.) It makes the accreditation process consistent and prevents unnecessary repetition.
We’re going to be honest with you, FedRAMP is no walk in the park. It’s much more like waltzing through a mine field. It’s much more involved and time consuming than FISMA or HIPPA. Small mistakes will be costly, setting you back weeks or months in the queue and costing you thousands of dollars.
So what can you do?
You help need someone with a proven track record of success and experience. Choosing Lunarline as your 3PAO gets you access to industry-leading professionals with FedRAMP knowledge, insight, and success.