FedRAMP still has some hurdles to clear, GSA's McClure says

The path toward full operational status of the Federal Risk Authorization and Management Program in 2014 won’t be without roadblocks, reports Camille Tuutti in Federal Computer Week, a sister publication to GCN.

The process of standardizing and implementing security controls for federal cloud services doesn’t come without hiccups, and the only way for agencies to move forward is through a “quick learning, slow implementation” approach, said David McClure, associate administrator in the General Services Administration’s Office of Citizen Services and Innovative Technologies.

McClure moderated an April 13 breakfast panel on FedRAMP organized by the Association for Federal Information Resources Management

“We know that throughout government, security officers will have varying interpretations of what controls are acceptable and whether you can leverage a total package or not,” McClure said. “We know that we’ll have to demonstrate the foundational element of solid evaluation, high degree of trust, and the ability to leverage."

Read the full article here.

About the Author

Connect with the GCN staff on Twitter @GCNtech.


  • business meeting (Monkey Business Images/Shutterstock.com)

    Civic tech volunteers help states with legacy systems

    As COVID-19 exposed vulnerabilities in state and local government IT systems, the newly formed U.S. Digital Response stepped in to help. Its successes offer insight into existing barriers and the future of the civic tech movement.

  • data analytics (Shutterstock.com)

    More visible data helps drive DOD decision-making

    CDOs in the Defense Department are opening up their data to take advantage of artificial intelligence and machine learning tools that help surface insights and improve decision-making.

Stay Connected