FedRAMP JAB Business Case extended

August 22, 2017, Abel Sussman , Director, TAAS – Public Sector and Cyber Risk Advisory

The FedRAMP Business Case for being considered for this cycle of the Joint Authorization Board (JAB) has been pushed out to August 31 at 5:00pm eastern. The additional time is to accommodate the large number of requests to document demand verification. Earlier the JAB has stated that federal demand across the U.S. government is the primary selection criteria for cloud service providers to be selected. This demand can be shown in current customers, on premise customers interested in a cloud offering, and potential customers documented through RFI/RFPs. 

Other preferential criteria are:

  • Alignment with OMB priorities: Trusted Internet Connections, IPv6, HSPD-12
  • Government only clouds
  • Offering at the FedRAMP High security risk level
  • Proven organizational maturity (CMMI Level 3+, ISO Organizational Certifications, etc.
  • Prior experience with federal security authorizations (including the use of a 3PAO in a consulting capacity)
  • Dependencies from other Cloud Service Offerings (such as Infrastructure as a Service, or Platform as a Service).

You can review the JAB application at the following link: https://gsa-burra.formstack.com/forms/fedramp_business_case_for_jab_prioritization

For Cloud Service Providers unable to meet the August 31st deadline, the JAB expects another opportunity to submit in December 2017.

Coalfire is the leading FedRAMP 3PAO and has experience in reviewing JAB applications to assure that cloud service providers highlight their value and implemented security features. We can perform a quality assurance check of your application ahead of submission.

Abel Sussman

Author

Abel Sussman — Director, TAAS – Public Sector and Cyber Risk Advisory

Recent Posts

Post Topics

Archives

Tags