N.C. cloud provider wins first FedRAMP stamp of approval
Cary, N.C.-based Autonomic Resources LLC became the first company to win provisional approval of its cloud service offerings under the federal government’s FedRAMP cloud security program. The 8a company won provisional authorization to market its infrastructure-as-a-service offerings to federal agencies.
FedRAMP, the Federal Risk and Authorization Management Program, is a standard approach for checking the ability of cloud vendors to meet security requirements for doing business with federal agencies. It is designed to provide a common approach for assessing the risks and security of commercial cloud offerings and to save the time and money involved in the process.
“By using FedRAMP and eliminating redundant security assessments, agencies can save an estimated $200,000 per authorization,” Dave McClure, associate administrator of GSA’s Office of Citizen Services and Innovative Technologies, said in an agency announcement. “This innovative collaboration with industry will lead to a common and more effective and efficient security authorization process governmentwide,” he said.
To receive the authorization, Autonomic successfully incorporated FedRAMP security controls in its cloud services offerings, a process overseen by the Veris Group, a FedRAMP-accredited third-party assessment organization. Accreditation means the Autonomic services are provisionally authorized to contain federal information at a moderate level of security set by Federal Information Security Management Act.
Individual agencies will now be able to review the full provisional authorization package as well as the assessment conducted by FedRAMP-accredited third party-organizations for their own agency specific security authorizations.
Posted by Paul McCloskey on Jan 03, 2013 at 9:39 AM