Cloud Security, Governance, Risk and Compliance

Official: Updated FedRAMP guidance imminent

Deputy Federal Chief Information Officer Drew Myklegard said that updated policy guidance for Federal Risk and Authorization Management Program compliance is set to be released amid the domination of software-as-a-service and platform-as-a-service products in the federal cloud marketplace, FedScoop reports. "The landscape has changed. SaaS and now it's heavy, heavy SaaS and a lot of PaaS providers really need access to the government and their mission. So now we're pivoting and it takes a couple of years to do that, but we're pivoting towards that market," said Myklegard at FedScoop's FedTalks. Such upcoming guidance would also take into consideration the problems faced by various agencies in implementing FedRAMP, with the document also set to be open for public feedback, according to Myklegard. "We want to make sure that we're really close in understanding what challenges the people on the ground are facing, as well as the industry products that are coming to market," Myklegard added.

Related

Cloud sector rejects proposed know-your-customer EO

Ahead of its imminent approval, the Biden administration's proposed executive order mandating U.S. cloud infrastructure-as-a-service providers to strengthen the verification of their users' identities has received industry opposition due to the increased financial and logistical burdens that would arise from such a rule, according to The Record, a news site by cybersecurity firm Recorded Future.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.