FedRAMP Releases Updated Security Assessment Plan Templates

May 8, 2012 / G C Network /

Why the Cloud? Processing, Exploitation and Dissemination

By G C Network | October 23, 2008

So why is the intelligence community so interested in cloud computing? Three letters: PED (Processing, Exploitation, Dissemination). Take these two real life examples from the publishing industry. Jim Staten of…

World Summit of Cloud Computing: “Enterprise Cloud Computing” work group

By G C Network | October 22, 2008

To leverage attendees of the World Summit of Cloud Computing, a kick-off meeting of the “Enterprise Cloud Computing” work group will be held near Tel Aviv, Israel on December 3,…

Cloud Package Management

By G C Network | October 21, 2008

In his post “Missing in the Cloud: package management“, Dave Rosenberg highlights a critical issue in the adoption of cloud computing by government agencies. “I dare say that a standard…

PlugIntoTheCloud.com

By G C Network | October 20, 2008

Information Week has just launched PlugIntoTheCloud.com as their cloud computing destination. In his Non Linear Thinking blog, Bill Martin calls it a movement aimed at “providing a source and forum…

Is the cloud computing hype bad?

By G C Network | October 17, 2008

From Gartner “Why a little cloud hype might be useful“: “It’s too simplistic to say cloud hype is bad . If we are technically expert is might irritate us with…

Stop the FUD (Fear, Uncertainty and Doubt) !!

By G C Network | October 16, 2008

Dan Morrill! Count me in !! In his excellent article, “Cloud Computing is Scary – But the FUD Has to Stop“,  Dan makes some excellent points: It is time to…

IBM, Microsoft and Google

By G C Network | October 15, 2008

On October 6th, IBM launched their cloud services initiative. This is a:  “[C]ompany-wide initiative that extends its traditional software delivery model toward a mix of on-premise and cloud computing applications…

Government in the Cloud

By G C Network | October 13, 2008

Back in mid-September, there was quite a thread in the Google Cloud Computing Group on the use of cloud computing by the federal government.  Some of the interesting comments were:…

CloudCamp Partners With SOA-R !!

By G C Network | October 10, 2008

I’m proud to announce that the final SOA-R Cloud Computing Education Event will be held in collaboration with CloudCamp. Now dubbed CloudCamp:Federal, the event will be held as an “unconference” to help…

Federal Cloud Computing Wiki

By G C Network | October 9, 2008

With the fast growing interest in cloud computing, the Federal Government community has established a Federal Cloud Computing Wiki. This wiki is managed by Dr. Brand Niemann, Senior Enterprise Architect…

Last week the GSA FedRAMP Program Office released the latest version of the cloud computing Security Assessment Plan (SAR) template.  This document is the most recent step toward the Federal governments goal of establishing FedRAMP initial operating Capability by June 2012.
The Federal Risk Authorization Management Program (FedRAMP) is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for Cloud Service Providers (CSP). Testing security controls is an integral part of the FedRAMP security authorization requirements and enables Federal Agencies to use the findings that result from the tests to make risk-based decisions. Providing a plan for security control ensures that the process runs smoothly. This document has been designed for CSP Third-Party Independent Assessors (3PAOs) to use for planning security testing of CSPs. Once filled out, this document constitutes a plan for testing. Actual findings from the tests are to be recorded in FedRAMP security test procedure workbooks and a Security Assessment Report (SAR).

This release also includes templates for:

Bookmark and Share

Cloud Musings on Forbes
( Thank you. If you enjoyed this article, get free updates by email or RSS – KLJ )

Follow me at https://Twitter.com/Kevin_Jackson
Posted in , , , , ,

G C Network

3 Comments

  1. Term papers on May 11, 2012 at 9:22 am

    Good Article About FedRAMP Releases Updated Security Assessment Plan Templates

    Post by:
    https://twitter.com/#!/term_paperz



  2. cloud ways on August 7, 2012 at 11:00 am

    Cloud Computing Really Works and What are its Benefits for Ordinary Users is really impressive. The benifts of cloud computing are explained in such a easy manner. Ordinary users will surely implement cloud computing with help of this blog. Thanks for sharing such valuable information.

    Drupal Hosting I Cloud For Developers



  3. cloud ways on August 7, 2012 at 11:03 am

    Thanks for sharing this such a great information.I really appreciate your work i share this link to my facebook friend as well as Digg and twitter this info helps to everyone

    OsCommerce Cloud Hosting I Moodle Cloud Hosting



Cloud Computing

Cybersecurity