Work together to provide a simple standardized approach to cybersecurity verification and validation.

A 501(c)6 nonprofit, StateRAMP levels the playing field for private-sector organizations serving the public sector and reduces hassles for public institutions with strict cybersecurity requirements.

Governments Can Procure and Secure More Efficiently and Confidently with StateRAMP

Diverse government standards and significant data sprawl through cloud service providers complicate today’s security environment, leaving governments less secure than ever amidst increasing cyber threats. StateRAMP lets governments trust but verify service provider products, making procurement more efficient and data more secure.

Service Providers Can Improve Security and Simplify Compliance with StateRAMP

Meeting the complex security standards and supplying (and resupplying) documentation required by various government partners can be confusing, time consuming, and costly. StateRAMP offers transferable credentials through standardized cybersecurity verification, allowing providers to verify once and serve many.

StateRAMP Cyber Summit with presenting sponsor Carahsoft

Join us in Indianapolis for the StateRAMP Cyber Summit on September 12, 2024, where leaders in government, industry, and cybersecurity converge to discuss the latest trends, challenges, and solutions in securing state information systems. This exclusive event offers invaluable networking opportunities, expert panel discussions, and insightful keynote presentations aimed at advancing cybersecurity practices across state agencies.

Learn, Connect, and Engage

December 5 at 11:00 am - 12:00 pm

Members Only: Provider Leadership Council Meeting

Open to StateRAMP Service Provider Members Only

StateRAMP service provider members are invited to join the upcoming Provider Leadership Council Meeting for key updates and initiatives advancing secure cloud solutions. This quarterly meeting provides members with a collaborative space to share insights and strengthen our approach to cloud security. Topics will include updates on StateRAMP initiatives, developments in cybersecurity compliance, and emerging trends. To receive a calendar invite, email Olivia Maple at olivia@stateramp.org.

November 19 at 7:30 am - November 21 at 1:00 pm

GOVIT Leadership Summit & Symposium

Jessica Van Eerde, StateRAMP’s Chief of Operations, will attend the GOVIT Leadership Summit & Symposium, held November 19-21 in Bloomington, MN. This event brings together leaders in public sector technology to discuss innovation, collaboration, and best practices for government IT initiatives. Join Jessica and other thought leaders to explore cutting-edge solutions for the public sector.

December 5 at 1:00 pm - 2:00 pm

Members Only: 3PAO Advisory Council Meeting

Open to StateRAMP Service Provider Members Only

We invite our StateRAMP 3PAO members to join the upcoming 3PAO Advisory Council Meeting for updates, discussions, and collaborative planning as we continue strengthening the foundation of secure cloud assessment standards. This quarterly meeting is a valuable opportunity for our 3PAO community to exchange insights, address current challenges, and ensure alignment with StateRAMP’s mission.

Topics will include:

  • Updates on StateRAMP tools and assessment protocols
  • Developments in cybersecurity compliance and policy
  • Member feedback on the 3PAO framework and process improvements
  • Guidance for continued alignment with StateRAMP standards

To receive a calendar invite, please reach out to Olivia Maple, our Membership Manager, at olivia@stateramp.org. Your expertise and participation are vital as we work together to uphold rigorous assessment practices that support secure cloud environments across the public sector.

Rev. 5 Updates – StateRAMP Office Hours

StateRAMP staff discusses the NIST 800-53 Rev 5 updates. This special Office Hours was an open forum for Service Providers, 3PAOs, State and local governments, and higher education institutions to ask questions to StateRAMP staff.

Rev. 5 Updates – StateRAMP Office Hours

This panel discussion explores the landscape of cybersecurity and third-party risk management.

Understanding StateRAMP’s Rev 5 Baseline Controls

Explore the latest updates to the StateRAMP Baseline Controls, incorporating NIST 800-53 Rev. 5. Learn how StateRAMP will align with the most current and comprehensive security guidelines for cloud cybersecurity.

Who We Are

As a 501(c)6 nonprofit, our mission is to promote cybersecurity best practices through education and policy development and improve the cyber posture of public institutions and the citizens they serve. We support the shared interests of state and local government entities, their prospective cloud service provider partners, and accredited third-party assessment organizations (3PAOs).