INDIANAPOLIS, IN — February 14, 2025 — StateRAMP, a 501(c)(6) nonprofit organization dedicated to advancing cybersecurity in the public sector, today announced its transition to GovRAMP. This rebrand reflects the organization’s ongoing mission to unify cybersecurity frameworks across all levels of government, including state, local, tribal, and educational institutions, while continuing to bridge the public and private sectors.
Why GovRAMP?
Since its inception, StateRAMP has been committed to building trust in cloud solutions through standardized security requirements and third-party verification, fostering collaboration between government agencies and service providers. However, the name “StateRAMP” no longer fully captures the scope of the organization’s mission, which supports a “whole-of-state” approach to cybersecurity across all levels of government. Additionally, a growing number of cloud service providers work across multiple government sectors, including municipalities, states, and even federal entities.
By transitioning to GovRAMP, the organization acknowledges this interconnected ecosystem and more accurately reflects its mission to serve a broader, more diverse community. The new name ensures no member feels excluded by a name associated solely with state-level initiatives, reinforcing its role as a unifying force in public sector cybersecurity.
As part of this transition, StateRAMP will legally remain the organization’s name but will operate as (dba) GovRAMP. This approach ensures all existing contracts and memberships will continue without disruption. The rebrand is not about changing the mission or strategic direction but about better representing the community it serves.
A Phased and Transparent Transition
GovRAMP is committed to a transparent and seamless transition:
Continuity & Commitment: StateRAMP will remain the legal entity, and all existing contracts and public and private sector memberships will continue without interruption.
Gradual Branding Update: The organization will gradually introduce GovRAMP branding elements later this year. StateRAMP is dedicated to maintaining clear communication with its community throughout this process.
Open Dialogue with Stakeholders: Governance members and the StateRAMP leadership team will be available to discuss this strategic direction at the upcoming StateRAMP Cybersecurity Framework Harmonization Symposium in Washington, D.C., fostering an open dialogue with public and private sector leaders.
Impact on Service Providers, 3PAOs, Consultants, and Public Sector Partners
StateRAMP recognizes the importance of ensuring a smooth transition for its diverse community, including service providers, Third Party Assessment Organizations (3PAOs), consultants, and public sector partners:
For Service Providers, 3PAOs, and Consultants: Memberships and certifications will remain active and unaffected during the transition. Starting this year, branding updates will be introduced gradually, ensuring continuity and minimal disruption to ongoing compliance and marketing efforts.
For Public Sector Partners: GovRAMP reflects StateRAMP’s continued commitment to serving local, state, tribal, and educational institutions by promoting a unified approach to cybersecurity.
Board of Directors’ Endorsement
The decision to introduce GovRAMP was made with the full support and approval of StateRAMP’s Board of Directors, who recognized the importance of a name that accurately reflects the organization’s mission and impact. The Board’s endorsement underscores its commitment to fostering an inclusive community that bridges the public and private sectors while continuing to advance trusted cloud security standards.
J.R. Sloan, President of StateRAMP, stated, “Our mission remains the same—advancing trusted cloud security standards—but our name is evolving to better reflect the community we serve. With GovRAMP, we are reinforcing our commitment to unify cybersecurity standards across all levels of government while ensuring no member feels left out.”
About StateRAMP
StateRAMP is the leading authority on cloud security standards for state and local governments, providing a standardized approach to assessing and authorizing cloud services. StateRAMP empowers government agencies and their vendors to navigate the complexities of cloud security with confidence. Learn more at StateRAMP.org.