Federal Agency Paves Way for Easier Move to the Cloud

By AccountingWEB Staff

 
The US General Services Administration (GSA) has released long-awaited details on a standardized program that is expected to smooth the way for the federal government's move to the cloud.
 
The Federal Risk and Authorization Management Program, or FedRAMP, is viewed as a standard method of approving cloud-based services and ensuring they meet rigorous security requirements. Security risks are one of the main stumbling blocks for government agencies to make the move to a cloud-based solution.
 
Agencies now have more information about how to put these services to the test. If a cloud computing service can make it through the FedRAMP authorization process, it gets a seal of approval for all federal agencies. Previously, every agency did its own authorization, often duplicating tests that had already been done, so this system is expected to be more efficient.
 
In fact, FedRAMP could save federal agencies between 30 and 40 percent on security assessments and cloud procurement processes, according to Steven Van Roekel, Chief Information Officer for the federal government, InformationWeek reported. He calls it a "do-once, use-many-times framework."
 
Tools known as "infrastructure as a service" would go first. These include remote e-mail, storage, and networking.
 
FedRAMP is not yet mandatory, but the forty-seven-page concept of operations document, released February 7, 2012, provides detail on how the authorization process will work. For example, a joint authorization board, consisting of the Department of Defense, Department of Homeland Security (DHS), and GSA, will do initial security assessments. DHS will monitor security compliance and respond to security incidents, and GSA will oversee the whole process, Nextgov reported.
 
According to the document, FedRAMP's "initial operational capabilities" will be launched in June and will ramp up into next fiscal year.
 
So far, White House officials have said FedRAMP won't apply to sensitive national security data stored in a federal cloud, but it may in the future. "I think eventually FedRAMP might be applicable to high-impact systems, but I don't see that happening any time soon," Katie Lewin, Director of Federal Cloud Computing at GSA, told POLITICO. "It's not something I'd be looking for . . . for at least a year."
 
Companies that make the grade will be listed as authorized government-wide providers on the FedRAMP website. Get more details at FedRAMP
 
Related article:
 

You may like these other stories...

From May 20-23, the Association for Accounting Marketing (AAM) held its annual conference. Frequent contributor Sally Glick picked up some ideas that she will be sharing with us in the coming days, as she has done in...
Success, for a practitioner in a busy CPA firm, requires the ability to handle multiple tasks effectively. To get everything done, CPAs typically track their agenda with a "to do" list or other open-item systems to...
Everyone loses clients. You've seen the statistics. Clients and heirs often change accountants, attorneys, and advisors after a death or divorce. That's understandable. What about ongoing relationships when the...

Upcoming CPE Webinars

Jul 16
Hand off work to others with finesse and success. Kristen Rampe, CPA will share how to ensure delegated work is properly handled from start to finish in this content-rich one hour webinar.
Jul 17
This webcast will cover the preparation of the statement of cash flows and focus on accounting and disclosure policies for other important issues described below.
Jul 23
We can’t deny a great divide exists between the expectations and workplace needs of Baby Boomers and Millennials. To create thriving organizational performance, we need to shift the way in which we groom future leaders.
Jul 24
In this presentation Excel expert David Ringstrom, CPA revisits the Excel feature you should be using, but probably aren't. The Table feature offers the ability to both boost the integrity of your spreadsheets, but reduce maintenance as well.