A presentation by DOE’s Office of Cyber Security discusses how to use the FedRAMP program for cloud computing. In the slide show, DOE explained that FedRAMP “provides a standard approach to Assessing and Authorizing cloud computing services and products” and allows “joint authorizations and continuous monitoring services for Government and Commercial cloud computing systems.”
The result is an “‘approve once, and use often’ common security risk model that can be leveraged across the Federal Government.”
The presentation also explains the two key interactions between agencies and FedRAMP: 1) Sponsoring a multi-agency cloud provider; and 2) Leveraging a FedRAMP authorized system.
The complete presentation is attached below.
Leave a Reply