GSA has announced that the Federal Risk and Authorization Management Program, or FedRAMP, has issued two new joint authorization board provisional cloud security authorizations to HP and Lockheed Martin for infrastructure-as-a-service offerings.
The FedRAMP program is intended to standardize cloud security assessments, authorization, and monitoring so agencies don’t have to do that on their own when finding vendors. The authorization board consists of CIOs from GSA, DoD and DHS.
The new authorizations, which required the vendors to implement a range of security controls and have them verified by a third party, are for HP Enterprise Cloud Services – Virtual Private Cloud and Lockheed Martin’s SolaS Cloud Solution, and they are in addition to cloud offerings by Autonomic Resources and CGI Federal under JAB provisional authorities to operate, GSA said.
It noted that in May, the Department of Health and Human Services granted Amazon Web Services’ GovCloud and US East / West offerings authority to operate using FedRAMP requirements. Other agencies can do the same if they find cloud services and want to get them accredited and begin using them.