FedRAMP's new cloud security guidance

Thursday - 6/12/2014, 10:25am EDT

New cloud security guidance is out from the Federal Risk and Authorization Management program, or FedRAMP. It includes new security controls and templates for agencies and cloud service providers to implement the new controls. The updates came a day after the deadline for agencies to earn FedRAMP certification for their cloud systems. The updates reflect changes from the National Institute of Standards and Technology's Special Publication 800-53. FedRAMP program manager Matt Goodrich says the latest update is the largest release of new FedRAMP information since the General Services Administration unveiled the whole concept two years ago. Right now federal agencies have 16 different FedRAMP-certified cloud options. Goodrich says those 16 options are already in place in 160 locations across the federal government.