Okta identity service gets FedRAMP approval
- By Sara Friedman
- May 15, 2017
On May 11, Okta announced that it had received Federal Risk and Authorization Management Program moderate authorization for its identity, mobility and security services available through Amazon Web Services’ commercial cloud in the US East and US West regions.
While Okta already provides its software-as-a-service products to the Centers for Medicare and Medicaid Services, the Department of the Justice helped Okta get the FedRAMP authority to operate. DOJ was interested in Okta because it wanted to simplify verification, according to Okta CIO Mark Settle.
With the company's developer and platform products, product teams can layer Okta’s identity services into their applications and portals. The company’s services include universal directory, single sign-on, provisioning, adaptive multi-factor authentication and mobility management, according to the FedRAMP website.
“The federal government has the highest security standards, so we see FedRAMP as the next evolution of our company,” Settle told GCN. “We have already worked to get a lot of other certifications with the government such as HIPAA [Health Insurance Portability and Accountability Act], and we have seen the benefits cascade to our customers, which helps us with our security safeguards.”
Okta is designed to be a “one-stop gateway to the cloud” that features the ability to incorporate legacy applications.
The identity management platform was a launch partner with the AWS Partner Network Government Competency Program. Okta leverages many AWS services to operate its SaaS platform, including Amazon EC2 Container Service and AWS Key Management Service.
Settle said several federal agencies are in “prospective-stage” conversations with Okta about using the services.
“We realize that there are various levels of sensitivity when it comes to protecting information, but at the same time customers don’t want to be hassled to get access --so the customer experience is huge for us,” Settle said.
Sara Friedman is a reporter/producer for GCN, covering cloud, cybersecurity and a wide range of other public-sector IT topics.
Before joining GCN, Friedman was a reporter for Gambling Compliance, where she covered state issues related to casinos, lotteries and fantasy sports. She has also written for Communications Daily and Washington Internet Daily on state telecom and cloud computing. Friedman is a graduate of Ithaca College, where she studied journalism, politics and international communications.
Friedman can be contacted at [email protected] or follow her on Twitter @SaraEFriedman.
Click here for previous articles by Friedman.