Attached below is Version 1.0 of the FedRAMP Concept of Operations (CONOPS) document. As GSA explains,
This document describes a general Concept of Operations (CONOPS) for the Federal Risk and Authorization Management Program (FedRAMP). FedRAMP is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud-based services. FedRAMP uses a “do once, use many times” framework that intends to saves costs, time, and staff required to conduct redundant agency security assessments and process monitoring reports.
Leave a Reply