Significant Change Request Template
Security Assessment Framework
This document describes a general governance and security framework for StateRAMP.
Vulnerability Deviation Request Form
When a service provider identifies a vulnerability that potentially warrants different handling than normally required by StateRAMP, they may submit a deviation request to StateRAMP using this form.
Vulnerability Scan Requirements Guide
This guide describes the requirements for all vulnerability scans provided by service providers to StateRAMP for products with a Ready, Provisionally Authorized, or Authorized status.
Incident Communications Procedures
This document describes the process for StateRAMP stakeholders to use when reporting information concerning information system security incidents or suspected information system security incidents.
Continuous Monitoring Guide
Continuous monitoring review procedures outline the process to examine each monthly package.