People

Matthew Goodrich: 'Mr. FedRAMP'

Matthew Goodrich

Matthew Goodrich, FedRAMP's program manager, is quick to share credit for the program's success.

"I think people have this idea that FedRAMP is this huge team, or this huge government program or huge process," said Matthew Goodrich, program manager for the Federal Risk and Authorization Management Program at the General Services Administration. "It's actually a process that's pretty simple and that follows FISMA."

One reason, of course, might be the productivity of Goodrich himself. There are active participants at the Office of Management and Budget, National Institute of Standards and Technology, and other agencies, but the core team at GSA consists of Goodrich; Director Maria Roat, the former deputy CIO at the Federal Emergency Management Agency who joined FedRAMP in February; and 11 contractors.

puzzle logo

A look at little-known agency experts who are pushing critical broad-based initiatives, plus other leaders whose influence bears watching.

"Matt is Mr. FedRAMP," said David McClure, associate administrator of GSA's Office of Citizen Services and Innovative Technologies.

Goodrich, however, is quick to share the credit. "We have an incredibly dedicated team" at GSA, he said. Scott Renda, portfolio manager for cloud computing at OMB, and the rest of the e-government team have been vital partners, he added, and NIST "has been absolutely instrumental in everything we do."

FedRAMP grew organically out of the Federal Cloud Computing Initiative's mandate to "remove the barriers to the adoption of cloud across government," Goodrich said.

"One of the biggest issues to come up in that initiative was security...and security is all about trust," he said. "How do we get agencies to trust these authorizations? And FedRAMP sort of grew out of that concept: If more than one agency does it together, then people will trust it more."

FedRAMP has been slow to show visible progress, but the number of approved cloud providers — and third-party assessment organizations that can evaluate them — has ticked steadily upward in recent months.

The authorization process takes time, Goodrich said. "But now you're seeing that we're beginning to hit traction with the rest of the providers, and I think you'll see a real steady rollout of new providers this summer and into the new year."

About the Author

Troy K. Schneider is editor-in-chief of FCW and GCN.

Prior to joining 1105 Media in 2012, Schneider was the New America Foundation’s Director of Media & Technology, and before that was Managing Director for Electronic Publishing at the Atlantic Media Company. The founding editor of NationalJournal.com, Schneider also helped launch the political site PoliticsNow.com in the mid-1990s, and worked on the earliest online efforts of the Los Angeles Times and Newsday. He began his career in print journalism, and has written for a wide range of publications, including The New York Times, WashingtonPost.com, Slate, Politico, National Journal, Governing, and many of the other titles listed above.

Schneider is a graduate of Indiana University, where his emphases were journalism, business and religious studies.

Click here for previous articles by Schneider, or connect with him on Twitter: @troyschneider.


The Fed 100

Read the profiles of all this year's winners.

Featured

  • Then-presidential candidate Donald Trump at a 2016 campaign event. Image: Shutterstock

    'Buy American' order puts procurement in the spotlight

    Some IT contractors are worried that the "buy American" executive order from President Trump could squeeze key innovators out of the market.

  • OMB chief Mick Mulvaney, shown here in as a member of Congress in 2013. (Photo credit Gage Skidmore/Flickr)

    White House taps old policies for new government makeover

    New guidance from OMB advises agencies to use shared services, GWACs and federal schedules for acquisition, and to leverage IT wherever possible in restructuring plans.

  • Shutterstock image (by Everett Historical): aerial of the Pentagon.

    What DOD's next CIO will have to deal with

    It could be months before the Defense Department has a new CIO, and he or she will face a host of organizational and operational challenges from Day One

  • USAF Gen. John Hyten

    General: Cyber Command needs new platform before NSA split

    U.S. Cyber Command should be elevated to a full combatant command as soon as possible, the head of Strategic Command told Congress, but it cannot be separated from the NSA until it has its own cyber platform.

  • Image from Shutterstock.

    DLA goes virtual

    The Defense Logistics Agency is in the midst of an ambitious campaign to eliminate its IT infrastructure and transition to using exclusively shared, hosted and virtual services.

  • Fed 100 logo

    The 2017 Federal 100

    The women and men who make up this year's Fed 100 are proof positive of what one person can make possibile in federal IT. Read on to learn more about each and every winner's accomplishments.

Reader comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group