Welcome!

Security Authors: Yeshim Deniz, Sebastian Stadil, Liz McMillan, Pat Romanski, Elizabeth White

Related Topics: Cloud Expo, SOA & WOA, Virtualization, Security, GovIT, SDN Journal

Cloud Expo: Article

AWS GovCloud Meets FedRAMP Standard

FedRAMP is a US govt-wide program that provides a standardized approach to security assessment for cloud products and services

Amazon Web Services said Tuesday that its GovCloud (US) in all US AWS regions has gotten an Agency Authority to Operate (ATO) from the US Department of Health and Human Services (HHS) under the Federal Risk and Authorization Management Program (FedRAMP) requirements at the moderate-impact level.

FedRAMP is a US government-wide program that provides a standardized approach to security assessment, authorization and continuous monitoring for cloud products and services.

Since AWS has demonstrated it can meet FedRAMP's security requirements, a wider range of government customers can use it to store, process and protect a diverse array of sensitive government data.

Amazon says all US government agencies can now evaluate AWS for their applications and workloads, provide their own authorizations to use AWS, and transition workloads into the AWS environment. More than 300 US government agencies already use the AWS services.

According to Teresa Carlson, AWS VP of worldwide public sector, "most government computing systems require built-to-order platforms and applications to meet government security and compliance requirements, which involve time-consuming and costly evaluations. With this FedRAMP compliance, agencies can now utilize a streamlined process from AWS when moving applications to the cloud to meet their unique business and mission requirements."

FedRAMP program manager Matthew Goodrich explained that agencies other than HHS can leverage the authorization, "potentially saving the federal government hundreds of thousands of dollars by eliminating redundant security authorizations of Amazon's environment."

Agencies can immediately request access to the AWS FedRAMP package by submitting a FedRAMP Package Access Request Form and begin moving through the authorization process to achieve an ATO using AWS.

More Stories By Maureen O'Gara

Maureen O'Gara the most read technology reporter for the past 20 years, is the Cloud Computing and Virtualization News Desk editor of SYS-CON Media. She is the publisher of famous "Billygrams" and the editor-in-chief of "Client/Server News" for more than a decade. One of the most respected technology reporters in the business, Maureen can be reached by email at maureen(at)sys-con.com or paperboy(at)g2news.com, and by phone at 516 759-7025. Twitter: @MaureenOGara

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.