Founded at the beginning of 2020, StateRAMP was born from the clear need for a standardized approach to the cybersecurity standards required from service providers offering solutions to state and local governments. StateRAMP is a membership organization comprised of service providers offering IaaS, PaaS, and/or SaaS solutions, third-party assessment organizations, and government officials. Our members lead, manage, and work in various disciplines across the United States and are all committed to making the digital landscape a safer, more secure place.
Recently, StateRAMP published their first Authorized Vendor List, which includes Project Hosts.
“Like many cloud service providers, Project Hosts provides solutions to a number of US states. Historically, the different compliance standards for each state have led to complications, procurement delays, and higher costs. By establishing a common compliance standard for multiple states, StateRAMP is accelerating the compliant cloud adoption process while lowering the cost both for providers and states,” said Joshua Krueger, ISSO/DPO/FSO, Project Hosts.
The Authorized Vendor List can be seen here: https://stateramp.org/vendor-list/
StateRAMP’s purpose is:
1. Help state and local government protect citizen data
2. Save taxpayer and service provider dollars with a “verify once, serve many” model
3. Lessen the burdens on State and Local Government
4. Promote education and best practices in cybersecurity among those it serves in industry and the government communities.
StateRAMP’s security verification model is based on the National Institute of Standards and Technology (NIST) publication 800-53 Rev. 4—the same publication the Federal Government used to develop FedRAMP, a similar cybersecurity program for federal entities.