StateRAMP Blog

StateRAMP 2023: Top 10 Updates
On November 14, Leah McGrath, Executive Director of StateRAMP, presented the 2023 Staff Report to the Steering Committee. As we wrap up 2023, these Top 10 Updates serve as a

The Evolving Landscape of Cybersecurity in the Public Sector
During an era defined by extensive technological advancements, the public sector faces a rapid evolution of cybersecurity challenges. Government agencies at all levels handle sensitive data, which makes them prime

Clarifying StateRAMP Review and Continuous Monitoring Processes
To address recent confusion surrounding the StateRAMP Ready and Authorization review and continuous monitoring processes, we’d like to provide a clear and comprehensive explanation of what is shared and how

The Importance of StateRAMP Authorization for Government Agencies
As Government agencies are increasingly storing and processing sensitive data in the cloud, they have a strong responsibility to protect this sensitive data, which can include personal information, financial data,

Cloud Security Compliance Mistakes and How to Avoid Them
Securing cloud services and protecting consumer data is extremely important in today’s technology landscape. As more businesses rely on cloud infrastructure, it becomes increasingly important for providers to avoid common

Streamlining Cloud Procurement with StateRAMP
Cloud computing has become a critical part of government IT infrastructure. In fact, a recent survey found that 95% of state and local governments are using cloud services in some

Enhancing National Cybersecurity: 3 Key Strategies to Combat Cyber Threats
The increasing frequency and severity of cyber threats has become a significant concern for our nation’s security. During the Keynote Panel at the StateRAMP Symposium, panelists highlighted the current state

NIST 800-53 Rev. 5 Updates to Security Baselines
In collaboration with its members from the public and private sectors, StateRAMP has made significant strides in enhancing its security measures. After several months of joint committee work sessions, the

Boundary Guidance Breaks Traditional Barriers
To achieve StateRAMP Authorization, providers must demonstrate their product meets minimum security criteria, which aligns with the best practices of National Institute of Standards & Technology (NIST) Special Publication 800-53.