Document Category: Program Document

Updated Fee Schedule

This document provides an updated StateRAMP Program Management Fee Schedule, effective January 1, 2023.

StateRAMP Glossary

This document provides definitions of commonly used terms and abbreviations.

StateRAMP Overview

This document provides information about the StateRAMP organization, how to become a member, the process for engaging the PMO to complete a security review, requirements for government sponsorship, and how to list products on the Authorized Product List.

StateRAMP Continous Monitoring Guide

This document outlines the process and requirements for monthly, quarterly, and annual reporting required for a service provider to maintain a StateRAMP status.

StateRAMP Security Control Baselines Summary

This document provides a summary of NIST 800-53 Rev. 4 security controls required for verification, by Security Impact Level Category. This summary is the result of ongoing collaboration with State leaders and cybersecurity experts.

StateRAMP Security Assessment Framework

This document provides a summary of the objectives, goals, and governance approach of StateRAMP, along with an outlined methodology to verify cloud security.