👨‍💻
Mike's Notes
  • Introduction
  • MacOs Setup
    • System Preferences
    • Homebrew
      • Usage
    • iTerm
      • VIM
      • Tree
      • ZSH
    • Visual Studio Code
    • Git
    • SSH Keys
  • DevOps Knowledge
    • SRE
      • Scaling Reliably
        • Splitting a Monolith into Microservices
      • Troubleshooting Common Issues
      • Service Level Terminology
      • Toil
      • Monitoring
      • Release Engineering
      • Best Practices
      • On-Call
      • Alerting
    • Containers
      • Docker
        • Best Practices
          • Image Building
          • Docker Development
        • CLI Cheat Sheet
      • Container Orchestration
        • Kubernetes
          • Benefits
          • Cheat Sheet
          • Components
          • Pods
          • Workload Resources
          • Best Practices
    • Developer Portal 👨‍💻
      • Solution Overview 🎯
      • System Architecture 🏗️
      • Implementation Journey 🛠️
      • Cross-team Collaboration 🤝
      • Lessons & Future 🎓
    • Provisioning
      • Terraform
        • Installation
        • Usage
    • Configuration Management
      • Ansible
        • Benefits
        • Installation
    • Build Systems
      • Bazel
        • Features
  • Security
    • Secure Software Engineering
    • Core Concepts
    • Security Design Principles
    • Software Security Requirements
    • Compliance Standards and Policies
      • Sarbanes-Oxley (SOX)
      • HIPAA and HITECH
      • Payment Card Industry Data Security Standard (PCI-DSS)
      • General Data Protection Regulation (GDPR)
      • California Consumer Privacy Act (CCPA)
      • Federal Risk and Authorization Management Program (FedRAMP)
    • Privacy & Data
  • Linux Fundamentals
    • Introduction to Linux
    • Architecture
    • Server Administration
      • User / Groups
      • File Permissions
      • SSH
      • Process Management
    • Networking
      • Diagrams
      • Browser URL Example
      • Network Topologies
      • Signal Routing
      • DNS (Domain Name System)
      • SSL (Secure Sockets Layer)
      • TLS (Transport Layer Security)
  • System Design
    • Process
    • Kafka
      • Advanced Topics
    • URL Shortener
Powered by GitBook
On this page
  • FedRAMP Marketplace

Was this helpful?

  1. Security
  2. Compliance Standards and Policies

Federal Risk and Authorization Management Program (FedRAMP)

FedRAMP, short for the Federal Risk and Authorization Management Program, is a U.S. government program established to standardize the security assessment, authorization, and continuous monitoring processes for cloud products and services. Its primary goal is to ensure that cloud solutions used by federal agencies meet consistent and stringent security standards.

Based on NIST Special Publication 800-53, it defines security controls and families.

Controls address aspects like Access Control, Communications Protection, and Security Assessment.

FedRAMP Marketplace

The FedRAMP Marketplace is an online repository that provides a comprehensive list of cloud products and services that have received authorization through the Federal Risk and Authorization Management Program (FedRAMP). It serves as a valuable resource for federal agencies and organizations seeking FedRAMP-compliant cloud solutions.

Examples of FedRAMP Authorized Cloud Services:

  • Amazon Web Services (AWS)

  • Microsoft Azure

  • Google Cloud Platform (GCP)

  • Salesforce Government Cloud

  • ServiceNow

  • Adobe Document Cloud for Government

  • Oracle Cloud Infrastructure (OCI)

PreviousCalifornia Consumer Privacy Act (CCPA)NextPrivacy & Data

Last updated 1 year ago

Was this helpful?