Get the Beginner’s Guide to the GSA Schedule

  • About
      • Providing full-service assistance to help businesses obtain and manage a GSA Schedule Contract Explore to learn more.
      • Our Team
      • Our Founder
      • Community Impact
      • Careers
      • Clients
      • Download the Beginner’s Guide
  • Get a GSA Schedule
      • Businesses, non-profits and educational institutions can obtain a GSA Schedule Contract to sell products and services to government customers. We'll help you navigate the GSA Schedule process. Explore to learn more.
      • GSA Schedule Beginner's Guide
      • GSA Schedule FAQ
      • GSA MAS Consolidation
      • Consolidated Schedule
      • GSA Post-Award Checklist
      • VA Schedule Contracts
      • Download the Beginner’s Guide
  • Industries
      • Industry Categories
      • Office Management
      • Facilities
      • Furniture & Furnishings
      • Human Capital
      • Industrial Products & Services
      • -
      • Information Technology
      • Miscellaneous
      • Professional Services
      • Scientific Solutions
      • -
      • Security & Protection
      • Transportation & Logistics
      • Travel
      • List of Legacy GSA Schedules
      • Download the Beginner’s Guide
  • Services
      • Discover tailored solutions to meet your contract needs – whether you need assistance assessing your current situation and obtaining the right GSA Schedule, or ensuring your awarded GSA Schedule Contract is up-to-date and compliant. Explore to learn more.
      • Obtain a GSA Schedule
      • Manage Your GSA Contract
      • GSA Advantage
      • GSA Streamlined Offer
      • GSA Contractor Assessment
      • GSA Audit Support
      • -
      • GSA Schedule Training
      • GSA Contract Modifications
      • Federal/State Contracts
      • GSA Contract Extension
      • Download the Beginner’s Guide
  • Resources
      • Explore a variety of resources ranging from educational materials and upcoming events to contracting news and exclusive reports. Explore to learn more.
      • Resource Types
      • Key Resources
      • Insights
      • Reports
      • -
      • Events
      • Webinars
      • Download the Beginner’s Guide
  • Contact
  • About
      • Providing full-service assistance to help businesses obtain and manage a GSA Schedule Contract Explore to learn more.
      • Our Team
      • Our Founder
      • Community Impact
      • Careers
      • Clients
      • Download the Beginner’s Guide
  • Get a GSA Schedule
      • Businesses, non-profits and educational institutions can obtain a GSA Schedule Contract to sell products and services to government customers. We'll help you navigate the GSA Schedule process. Explore to learn more.
      • GSA Schedule Beginner's Guide
      • GSA Schedule FAQ
      • GSA MAS Consolidation
      • Consolidated Schedule
      • GSA Post-Award Checklist
      • VA Schedule Contracts
      • Download the Beginner’s Guide
  • Industries
      • Industry Categories
      • Office Management
      • Facilities
      • Furniture & Furnishings
      • Human Capital
      • Industrial Products & Services
      • -
      • Information Technology
      • Miscellaneous
      • Professional Services
      • Scientific Solutions
      • -
      • Security & Protection
      • Transportation & Logistics
      • Travel
      • List of Legacy GSA Schedules
      • Download the Beginner’s Guide
  • Services
      • Discover tailored solutions to meet your contract needs – whether you need assistance assessing your current situation and obtaining the right GSA Schedule, or ensuring your awarded GSA Schedule Contract is up-to-date and compliant. Explore to learn more.
      • Obtain a GSA Schedule
      • Manage Your GSA Contract
      • GSA Advantage
      • GSA Streamlined Offer
      • GSA Contractor Assessment
      • GSA Audit Support
      • -
      • GSA Schedule Training
      • GSA Contract Modifications
      • Federal/State Contracts
      • GSA Contract Extension
      • Download the Beginner’s Guide
  • Resources
      • Explore a variety of resources ranging from educational materials and upcoming events to contracting news and exclusive reports. Explore to learn more.
      • Resource Types
      • Key Resources
      • Insights
      • Reports
      • -
      • Events
      • Webinars
      • Download the Beginner’s Guide
  • Contact
1/14/2015

FedRAMP

Insights

What is FedRAMP?

The Federal Risk and Authorization Management Program (FedRAMP) is a government program managed by the General Services Administration. It was designed to provide a standardized system for assessing, authorizing, and continuously monitoring cloud products and services.  If you are a Cloud Service Provider and want to do business with the Federal Government, then you need to meet the FedRAMP requirements. Once you have met their requirements, you will be able to provide cloud services to any and all federal agencies.

What are the benefits of FedRAMP?

The government wants more people to use cloud services because it allows agencies to save time, money, and increase overall efficiency by using a “do once, use many times” structure. Before FedRAMP, every agency was responsible for interpreting their own individual security assessments, which created more work for vendors because they had to constantly modify their Assessment and Authorization packages. With FedRAMP, you are able to bypass these duplicative efforts because there is only one unified baseline.

FedRAMP also offers reduced cyber-security threats to vendors because it allows government agencies to detect cyber security vulnerabilities at a much faster rate due to the interagency approach.

How do I become a FedRAMP approved CSP?

Before beginning the application process for FedRAMP, you should review the Security Assessment Framework and Guide to Understanding FedRAMP.

Once the CSP has reviewed the documents, complete the application form and put into action any FedRAMP security controls that are not currently implemented. You must also complete a FIPS 199 Worksheet to document the security controls within the system. Please keep in mind, it is vital that you accurately document the changes made within the cloud system and how they meet FedRAMP security controls to be approved.

Next, perform an independent system assessment to ensure all implementations of FedRAMP security controls are properly in place. It is recommended that CSPs who wish to meet FedRAMP requirements, work with a Third Party Assessment Agency (3PAO) with which they have pre-existing contracts.

Lastly, create and submit an authorization package and provide continuous monitoring reports and updates to FedRAMP.

How long will it take to achieve FedRAMP Authorization?

Assuming the CSP has implemented the controls and completed related documentation, the following timeframe will apply:

  • A FedRAMP JAB P-ATO assessment takes about 7-9 months to complete.
  • An agency ATO can take anywhere from 4-6 months to complete.
  • A CSP supplied package can likely be completed in 2-3 months

Additional Points:

  • The FedRAMP PMO can be reached at info@FedRAMP.gov
  • FedRAMP Compliant Cloud Systems
  • Templates
  • Key Documents
  • Accredited 3PAOs
Share this entry
  • Share on Facebook
  • Share on Twitter
  • Share on LinkedIn
Type
  • Key Resources
  • Insights
  • Reports
  • Events
  • Webinars
Topics
  • Agency Spending
  • Cloud
  • COVID-19
  • Cybersecurity
  • Energy
  • GovCon
  • GSA Contract Holders
  • GSA Sales
  • Health IT
  • Intro to GovCon
  • Intro to GSA
  • IT
  • MAS Consolidation
  • Miscellaneous
  • New GSA SINs
  • Office Products
  • Products
  • Professional Services
  • Security
  • Services
  • Small Business
  • Solicitation Refresh
  • State/Local
  • VA Schedule
  • Veteran-Owned

You Might Also Like:

Insights
3/15/2023

What is the GSA OLM SIN?

Insights
3/13/2023

How to Hire a GSA Consultant: 8 Factors to Consider

Stay Informed

Sign up for our newsletter to receive updates about latest news in government contracting and GSA Schedule Contracts.

Subscribe
  • LinkedIn
  • Twitter

Federal Schedules has helped businesses of all sizes successfully obtain, manage and grow with GSA and VA Schedule Contracts for more than 35 years. As the leading government contracts consultant, FEDSched provides an unrivaled level of expertise and guidance businesses can trust to navigate the intricacies of the GSA Schedule Contract and stand out in the federal market space.

Federal Schedules GSA Schedule FAQ GSA BGuide download

FEDSched HQ

2325 Dulles Corner Boulevard, Suite 410
Herndon, VA 20171-4675
703-783-0080

Contact Us
Free Consultation

@FEDSched Latest Tweet

Need help obtaining or managing your #GSASchedule Contract? Make sure you the company you hire can meet your needs and is worthy of your investment. ✅Consider these 8 factors before you hire a GSA consultant: https://gsa.federalschedules.com/resources/how-to-hire-a-gsa-consultant/?utm_source=socialmedia&utm_medium=twitter

© Copyright 2023 Federal Schedules, Inc

Sitemap | Privacy Policy

Scroll to top