The US General Services Administration (GSA) and the American Council for Technology-Industry Advisory Council (ACT-IAC) are holding a workshop for industry on Wednesday to review security controls required by the Federal Risk and Authorization Program (FedRAMP) for cloud security.
The workshop will review the security controls that federal agencies and cloud service providers must implement under the FedRAMP program, which establishes uniform federal security requirements for purchasing cloud services from vendors.
The FedRAMP provides a risk-based approach for the adoption and use of third-party cloud services by making available to federal departments and agencies standardized security requirements for the authorization and cybersecurity of cloud services for selected information system impact levels.
via Infosecurity Magazine, continued here.
