StateRAMP Public Documents

Category Document Name Description Download Last Modified
StateRAMP Program Document Minimum Mandates for Ready Status To achieve Ready Status, a Service Provider must meet the minimum mandatory requirements outlined in this document. 12/17/2020
State Document Implementation Checklist for Governments This simplified view of the Getting Started Guide provides an overview checklist of how to implement StateRAMP for governments. 11/30/2020
State Document Get Started Guide for Governments This document serves as a resource for state and local government leaders interested in implementing StateRAMP. StateRAMP staff are available to assist and answer questions. 4/15/2021
State Document Data Classification Tool This document is intended to be used by state governments, procurement officials, and service providers as a tool for determining the appropriate impact level for StateRAMP or FedRAMP security requirements. 12/17/2020
StateRAMP Program Document StateRAMP Continuous Monitoring Guide This document outlines the process and requirements for monthly, quarterly, and annual reporting required for a service provider to maintain a StateRAMP status. 10/29/2020
StateRAMP Program Document StateRAMP PMO Charter The PMO Charter defines the objectives, roles, and responsibilities associated with the StateRAMP Program Management Office (PMO). 9/24/2020
StateRAMP Program Document StateRAMP Security Baselines Summary This document provides a summary of NIST 800-53 Rev. 4 security controls required for verification, by Security Impact Level Category. This summary is the result of ongoing collaboration with State leaders and cybersecurity experts. 10/29/2020
StateRAMP Program Document StateRAMP Security Assessment Framework This document provides a summary of the objectives, goals, and governance approach of StateRAMP, along with an outlined methodology to verify cloud security. 12/17/2020
StateRAMP Program Document StateRAMP Adopted Bylaws This framework for bylaws was developed by the StateRAMP Steering Committee. As the Board of Directors is formed in late 2020, one of their first actions will be to adopt the bylaws for the organization. 8/20/2020
StateRAMP Program Document StateRAMP Steering Committee Charter The purpose of this charter is to define the objectives, membership, decision making, meeting schedule, and roles and responsibilities associated with the StateRAMP Steering Committee. 5/21/2020
StateRAMP Program Document Standards & Technical Committee Charter The Standards & Technical Committee makes recommendations for best practices and policies that guide cloud security requirements and verification. 3/19/2021
StateRAMP Program Document Appeals Committee Charter The Appeals Committee serves as the adjudication board for the Program Management Office determinations. 3/19/2021
StateRAMP Program Document 3PAO Accreditation Process StateRAMP recognized FedRAMP authorized third party assessment organizations (3PAOs) to conduct independent audits. 1/15/2021
Provider Document Get Started Guide for Service Providers This document serves as a resource for service providers interested in becoming a StateRAMP member and having products verified by the PMO. StateRAMP staff are available to assist and answer questions. 4/19/2021
Provider Document StateRAMP Provider Sponsor Requirements This document outlines the process (including government sponsorship requirements) for a vendor’s offering to be listed as StateRAMP Authorized on StateRAMP’s Authorized Vendor List (AVL). 4/29/2021

Contact StateRAMP

Have a specific question or would you like to set up a meeting? Reach out to us and we will be happy to help.