StateRAMP PMO Fee Schedule
This document provides an updated StateRAMP Program Management Fee Schedule, effective January 1, 2023.
StateRAMP PMO Fee Schedule Read More »
Program Document
StateRAMP Overview
This document provides information about the StateRAMP organization, how to become a member, the process for engaging the PMO to complete a security review, requirements for government sponsorship, and how to list products on the Authorized Product List.
StateRAMP Overview Read More »
Minimum Mandates for Ready Status at Moderate and High Impact
To achieve StateRAMP Ready status at a Moderate or High Impact Level, a service provider must meet the minimum mandatory requirements outlined in this document.
Minimum Mandates for Ready Status at Moderate and High Impact Read More »
Minimum Mandates for Ready Status at Low Impact
To achieve StateRAMP Ready status at a Low Impact Level, a service provider must meet the minimum mandatory requirements outlined in this document.
Minimum Mandates for Ready Status at Low Impact Read More »
StateRAMP Security Control Baselines Summary
This document provides a summary of NIST 800-53 Rev. 4 security controls required for verification, by Security Impact Level Category. This summary is the result of ongoing collaboration with State leaders and cybersecurity experts.
StateRAMP Security Control Baselines Summary Read More »
StateRAMP Security Assessment Framework
This document provides a summary of the objectives, goals, and governance approach of StateRAMP, along with an outlined methodology to verify cloud security.
StateRAMP Security Assessment Framework Read More »