Cloud

FedRAMP website set for makeover

FedRAMP logo. (Update 2014)

FedRAMP is getting an online facelift in March, with new procurement guidelines and training modules on deck, according to the program's director.

Matt Goodrich said the General Services Administration's Federal Risk and Authorization Management Program, which seeks to standardize agencies' approach to cloud security, will unveil a new website and a dedicated URL -- FedRAMP.gov -- for federal cloud users and vendors next month. (FedRAMP.gov currently redirects to a section on the federal CIO Council's site. Previously, pages on GSA.gov served as the "FedRAMP homepage.")

The updates will reflect the program's "FedRAMP Forward" roadmap, announced in December, which addresses how to grow FedRAMP "thoughtfully, deliberately and effectively" in pursuit of three goals: increasing compliance and agency participation, improving efficiencies and facilitating adaptation.

At a Feb. 19 Association for Federal Information Resources Management (AFFIRM) panel on "New Voices in Federal IT," Goodrich said informal surveys of users, including federal employees, offered solid evidence that the current site was not "user friendly" and needed a refresh.

"We looked at the analytics, user interviews with stakeholders. People didn't understand how to get information," from the current site, he said. "We also needed a 10,000-foot high-level view of how FedRAMP does what it does," he added.

According to Goodrich, the new website will incorporate better-defined paths to information and will also be more visually appealing. He declined to provide an exact launch date, saying only it would be sometime in March.

In the coming weeks and months, Goodrich said FedRAMP will also roll out a series of specific guidance documents to industry and federal agencies outlining information on how to use the program, as well as templates that can be used across agencies for specific purposes. An initial guidance document concerns cloud procurement methods that will provide templates on how acquisition personnel can incorporate cloud into contracts. That guidance document, now in draft, he said, would be out "soon."

Goodrich hopes to follow that with others in the coming months, addressing ever more granular FedRAMP topics for federal users and vendors.

About the Author

Mark Rockwell is a staff writer at FCW.

Before joining FCW, Rockwell was Washington correspondent for Government Security News, where he covered all aspects of homeland security from IT to detection dogs and border security. Over the last 25 years in Washington as a reporter, editor and correspondent, he has covered an increasingly wide array of high-tech issues for publications like Communications Week, Internet Week, Fiber Optics News, tele.com magazine and Wireless Week.

Rockwell received a Jesse H. Neal Award for his work covering telecommunications issues, and is a graduate of James Madison University.

Click here for previous articles by Rockwell. Contact him at mrockwell@fcw.com or follow him on Twitter at @MRockwell4.


The Fed 100

Save the date for 28th annual Federal 100 Awards Gala.

Featured

Reader comments

Mon, Feb 23, 2015 Owen Ambur Hilton Head, SC

The FedRAMP Forward plan is now available in open, standard, machine-readable StratML Part 2, Performance Plan, format at http://xml.fido.gov/stratml/drybridge/index.htm#FRAMPF

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group