Doorway on steps in the clouds

Appian Cloud app gets FISMA moderate security cert

The General Services Administration has granted moderate-level security certification to a business process management application built on Appian Cloud that the agency is using for acquisition planning, making it easier for other federal agencies to use Appian cloud-based software.

Appian Cloud, which runs on the Amazon Web Services cloud platform, has received Federal Information Security Management Act (FISMA) Moderate Authorization and Accreditation.

In 2010, Appian Cloud was accredited with FISMA low-level security by the Education Department. However, the GSA awarded the moderate designation based on an set of stricter controls covering the application’s security assessment report, system security plan, together with the contingency plan, and contingency test report.

As the agency responsible for federal procurement, GSA needed to improve its own adherence to Federal Acquisition Regulations and roll out a system that would help all agencies do the same. To that end, GSA deployed Appian in the cloud for acquisition planning, making a complicated, time-consuming process run more efficiently. 

Using Appian, GSA procurement officers can see all system and human events related to a given procurement contract. They are also able to collaborate and drill down into procurement-related data hosted in other systems to improve data accuracy and support regulatory compliance, Appian officials said.

Appian Cloud, which uses AWS’s Amazon Elastic Compute Cloud, is a complete BPM suite available in the cloud as an on-demand software-as-a-service offering via a subscription model.

Amazon has invested heavily in making sure its cloud services meet federal security and compliance standards, a key reason Appian has partnered with the company, said Myles Weber, Appian’s vice president for cloud and community services.

About the Author

Rutrell Yasin is is a freelance technology writer for GCN.


  • Records management: Look beyond the NARA mandates

    Pandemic tests electronic records management

    Between the rush enable more virtual collaboration, stalled digitization of archived records and managing records that reside in datasets, records management executives are sorting through new challenges.

  • boy learning at home (Travelpixs/

    Tucson’s community wireless bridges the digital divide

    The city built cell sites at government-owned facilities such as fire departments and libraries that were already connected to Tucson’s existing fiber backbone.

Stay Connected