FedRAMP issues last call for comments on high-baseline standards
- By Mark Rockwell
- Dec 21, 2015
The Federal Risk and Authorization Management Program wants final input from cloud service providers and other interested groups for the last draft of its most secure "high-baseline" cloud security standards.
That high baseline standard for FedRAMP is meant to ensure cloud service providers have secured their data centers to the level required for sensitive unclassified data, like health records in cloud environments.
The General Services Administration released the final draft to industry and interested stakeholders on Dec. 21 and asked for responses by Jan. 8, 2016.
FedRAMP's initial high baseline draft was unveiled in March 2015. In September, the FedRAMP program management office (PMO) convened a tiger team of high-impact system owners and agency leads to judge the first round of public comments.
The second round of comments generated by the just-released draft, FedRAMP officials said, will provide grist for further changes to the document.
Mark Rockwell is a senior staff writer at FCW, whose beat focuses on acquisition, the Department of Homeland Security and the Department of Energy.
Before joining FCW, Rockwell was Washington correspondent for Government Security News, where he covered all aspects of homeland security from IT to detection dogs and border security. Over the last 25 years in Washington as a reporter, editor and correspondent, he has covered an increasingly wide array of high-tech issues for publications like Communications Week, Internet Week, Fiber Optics News, tele.com magazine and Wireless Week.
Rockwell received a Jesse H. Neal Award for his work covering telecommunications issues, and is a graduate of James Madison University.
Click here for previous articles by Rockwell.
Contact him at [email protected] or follow him on Twitter at @MRockwell4.