Authorized Product List
Verified offerings with a security status of Ready, Provisionally Authorized, or Authorized are listed below on the Authorized Product List (APL). The APL was first published on September 14, 2021, and is updated at the end of every business day.
To be verified, the product must meet minimum security requirements and provide an independent audit conducted by a Third Party Assessment Organization (3PAO). StateRAMP recognizes three verified statuses, including Ready, Provisionally Authorized, and Authorized.
- Ready products meet requirements defined by the Minimum Ready Minimum Mandatory Requirements Policy;
- Provisionally Authorized status may be assigned by a sponsoring government or Approvals Committee to a package submitted for Authorized Status, if the product meets the Authorization requirements, but one of the product’s interconnected technologies is not StateRAMP or FedRAMP Authorized. To achieve a Provisionally Authorized Status, the interconnected technology must have a current StateRAMP Security Snapshot, per the StateRAMP Authorization Boundary Guidance.
- Authorized is the highest level of authorization and is for products that have demonstrated compliance with all required security controls by impact level.
Products that have been awarded both a StateRAMP Authorized status and Federal JAB status are now listed on the APL as Authorized, Federal JAB.
The StateRAMP PMO provides independent validation and verification that the security package and audit comply with the standards established by the StateRAMP governing boards. To ensure ongoing security compliance and risk mitigation, providers must comply with continuous monitoring requirements to maintain a verified security status.
Company | Product Name | Security Status | Service Model | Impact Level | Ready Date | Authorization Date | Package ID | 3PAO | Point Of Contact | Contact Email | Sponsor Names | Service Description | Category |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
3M | Solventum Health Services Platform (SHSP) | Authorized | SaaS | Moderate | 2024-01-24 | SR23042 | Coalfire | Jeanette Beaudry | jbeaudry@mmm.com | 3M Grouper Plus Content Services (GPCS) provides reliable, secure processing of patient claims and other coded data in the cloud. The web-based delivery system hosts a selection of classification and reimbursement content users need to group, edit and calculate reimbursement of claims. The system is responsible for processing markup language (machine readable) grouping, editing, and reimbursement claims over the internet through a secured channel and processing them for customers. There are multiple content versions and interface versions supported for backwards compatibility. The system includes an interface managing users, payment processing schedules, and interactive claims processing. | Cloud Services,Content Collaboration, | ||
Actsoft, Inc | Workforce Manager for Government | Authorized | SaaS | Moderate | 2023-04-18 | SR23008 | A-Lign | James Armstrong | jarmstrong@actsoft.com | StateRAMP Approvals Committee | Workforce Manager for Government is a fully integrated platform, which facilitates the business needs of an Agency with mobile employees. On top of robust features such as Wireless Forms, Timekeeping, Job Dispatching, and GPS Tracking, customers with vehicles can leverage the solution’s fleet components to monitor vehicle activities like stop times, idling, driver behavior, score cards, and telematics. This intuitive, yet flexible solution addresses key market challenges such as ease of use, data collection, mobile resource management, implementation costs, worker compliance and overall accountability. The synergy of tools in Workforce Manager for Government brings customers greater efficiency and productivity gains by automating and streamlining processes that help them save time, reduce labor costs, and lower vehicle-related expenses such as fuel and maintenance. Government Customers benefit from an easily deployable solution that provides a significant return on investment. Workforce Manager for Government is equipped with enterprise-grade workforce management tools that are typically only found in high-priced business applications, making it affordable and accessible to all Government Agencies. This approach provides Government customers with a solution that delivers relevant information about daily field operations, helping agencies craft new business strategies to save both time and money. | ||
Anthology | Finance and Human Capital Management | Authorized | SaaS | Moderate | 2024-06-24 | SR23012 | A-Lign | Josh Rector | josh.rector@anthology.com | A feature-rich program that brings together finance and Human Capital Management in one solution to help you focus on your learners. Modules include: General Ledger, Faculty and Program ROI, Fund Source Management, Budgeting, and Human Resource Management | |||
Anthology | Occupation Insight | Authorized | SaaS | Moderate | 2024-04-25 | SR23067 | A-Lign | Josh Rector | josh.rector@anthology.com | Anthology Occupation Insight aligns academic programs and student skills with the needs of the marketplace. Anthology’s career readiness and workforce analytics tool improves students’ preparation for their future careers. | Learning Management System, | ||
Anthology | Anthology Reach | Authorized | SaaS | Moderate | 2024-08-20 | SR23070 | A-Lign | Josh Rector | josh.rector@anthology.com | Anthology Reach is a solution for reaching across campus, from admissions to student success to alumni engagement. It guides and encourages an individual along their experience with the institution. The experience becomes a collection of interactions, building the unique story that each person’s journey tells. Institutions use those interactions, combined with the data gathered, to strengthen connections with their community in a personalized way. With powerful insights from that data, institutions can be strategic and agile in making the decisions that make a difference in bringing in the next class, driving retention initiatives, and meeting advancement goals. Anthology® Reach combines Anthology’s deep CRM solutions expertise with Microsoft’s application and cloud infrastructure to deliver a system of intelligence for higher education. | Customer Management and Experience Solutions, | ||
Appian | Appian | Authorized | PaaS | Moderate | 2023-01-05 | SR22018 | Coalfire | Appian FedRAMP/StateRAMP Team | fedramp@appian.com | StateRAMP Approvals Committee | Appian software is delivered to the Appian Cloud through a Platform-as-a-Service (PaaS) model and leverages cloud-native robotic process automation (RPA), simplifying control management and reducing overhead for customers. Government agencies should consider the Appian Government Cloud (at Impact Level 5) for critical acquisitions, case management and logistics, especially when process and business rule complexities are high. The Appian Low-Code Platform unifies the key capabilities needed to get work done faster. | ||
Authorium | Authorium Systems | Authorized | SaaS | Moderate | 2024-07-19 | SR24015 | Schellman & Company | Chris Mayhew | Chris.mayhew@authorium.com | StateRAMP Approvals Committee | Authorium's cloud-based, no-code platform for Document Process Automation radically reduces the time it takes to develop complex document sets that form the backbone of government processes for procurement, contracting, grants, and budgeting. With built-in project management tools, powerful collaboration capabilities and easy integration with existing government systems, Document Process Automation speeds up the fundamental processes of procurement, contracting, grants, and budgeting by 50-70%. | ||
BetterUp, Inc. | BetterUp For Government (BUFG) | Authorized | SaaS | Moderate | 2024-06-27 | SR23078 | Schellman & Company | Eva Pellegrini | eva.pellegrini@betterup.co | StateRAMP Approvals Committee | BetterUp For Government (BUFG) is a Software as a Service (SaaS), web-based application, 1-on-1 coaching platform for government employees. BUFG provides government employees with access to a certified professional coach to focus on achieving personal and professional goals. BUFG provides government leaders with near real-time insights into emerging behavioral trends across their workforce through the Partner Analytics Dashboard (PAD), and it does so in a way that maintains the individual privacy of BetterUp program participants. | ||
BlackBerry | BlackBerry Cloud - AtHoc Services for Government (ACSforGov) | Authorized | SaaS | Moderate | 2021-12-13 | 2022-05-20 | SR21019 | Kratos | Rashad Munawar | rmunawar@blackberry.com | StateRAMP Approvals Committee | BlackBerry’s AtHoc is a networked crisis communication platform enabling corporations and government agencies to communicate and collaborate securely with their personnel and with other organizations through multiple devices during times of crises. BlackBerry’s AtHoc platform addresses critical communications needs including: Account: AtHoc Account enables real-time visibility into location and status for effective personnel accountability and crisis handling before, during, and after emergencies. This integrated approach to personnel accountability enables inputs from managers about their team, call center operators, data streams from HR and travel systems, as well as self-reporting by individuals. Alert: AtHoc Alert provides a comprehensive crisis communication solution that unifies all channels and devices, empowering organizations, people, and communities to collaborate during critical events. AtHoc’s flexible deployment options safeguards important personal information and enables enterprise-level command and control. Connect: AtHoc Connect empowers organizations to create their own permission-based network to establish interoperable communication and information sharing with organizations in their community. Collect: AtHoc Collect empowers your personnel in the field to be the "eyes and ears" of the operations center. AtHoc Collect enables on-scene personnel to report events, work progress, along with rich geo-tagged media that are worth a thousand words. | |
Blackboard | Blackboard Learn SaaS GovCloud | Authorized | SaaS | Moderate | 2023-03-27 | SR21032 | A-Lign | Andrew Keeney | andrew.keeney@blackboard.com | StateRAMP Approvals Committee | Blackboard's Learn SaaS solution offers government and military agencies next-generation online, social and mobile tools that create a continuous learning environment, built around peer-to-peer interaction, content, and discussions | ||
Boomi | AtomSphere | Authorized | SaaS | Moderate | 2023-12-18 | SR22033 | A-Lign | Erika Fry | tech.compliance@boomi.com | Boomi AtomSphere is a cloud-native integration Platform-as-a-Service (iPaaS) technology that lets you connect everyone to everything. The Boomi SaaS AtomSphere Platform solves the needs of our government customers with end-to-end capabilities by integrating applications, systems, and connecting people. | |||
Box, Inc. | Box Enterprise Cloud Content Collaboration Platform | Authorized | SaaS, PaaS | Moderate | 2022-05-19 | 2024-05-15 | SR22001 | Schellman & Company | Tom Cowles | compliance@box.com | Los Angeles City Employees' Retirement System (LACERS) | The Box Enterprise Content Cloud Collaboration Platform enables business to easily share, manage and secure their content. In today’s mobile-first, cloud-first world, providing employees with secure access to content at any time using any device is critical to creating a more productive, connected workforce and improved customer experiences. Beyond secure file sharing, Box enables easy access to content and collaboration tools from any device with the security, scalability and administrative controls that IT requires. | |
Casepoint LLC | Casepoint Government Ediscovery | Authorized | SaaS | High | 2024-09-17 | SR22027 | Schellman Compliance, LLC. | StateRAMP Approvals Committee | Casepoint is a data discovery platform for legal, investigatory, compliance, and IT teams who struggle to get actionable insights for data-centric business processes like eDiscovery, investigations, and information requests. Casepoint empowers leading corporations and government organizations to reduce costs, lower risk, and improve time-to-insight. Casepoint’s easy-to-use AI-powered platform is purpose-built for organizations that require the highest level of security and scalability to meet the evolving demands of the modern data landscape. Casepoint Government is delivered as a SaaS offering using a multi-tenant government-only cloud computing environment and is used by government agencies to meet their complex needs, including: • Legal Hold • Regulatory Enforcement / Investigations • Litigation (eDiscovery) • FOIA / PRR • Congressional Inquiries • Legal Data Storage • Task / Case Strategy and Management The Casepoint Government platform includes Casepoint Legal Hold, Casepoint eDiscovery, Casepoint FOIA, Casepoint Filestore, APIs for cloud collections, task management, and an app builder. Casepoint Government provides agencies with the capabilities needed to manage large volumes of data in litigation, investigations, congressional inquiries, and FOIA requests, including cloud-based collections, processing, culling, review, and highly customizable productions. It also offers built-in artificial intelligence and analytics with advanced tools for predictive analysis, search, and data visualization. | ||||
CBORD | CBORD Online Transaction Processing | Authorized | SaaS | Moderate | 2024-08-21 | SR23076 | Securisea | Josh Elder | jle@cbord.com | NetMenu: NetMenu includes the following modules: CBORD Fusion, NetMenu Planner, NetMenu TrayCard, NetMenu Tray Ticket, Selective Dining, Mobile Inventory, CBORD Patient, Room Service Choice, NetMenu Floor Stock, CBORD C-Store, CBORD Data Analytics, CBORD Hub, NetNutrition, NetRecipe, Tray Logistics, Menu Display Interface (MDI); and its customer-branded applications: Horizon School Technology (HST) Back of House (BOH), BluePrint Menu Management System®, Cycle Menu Management®, Sysco® eNutrition, NetIMPAC, and Menu Wizard+. NetMenu provides an integrated food production, inventory management, and menu planning solution to support retail and patient nutrition. Electronic vendor integration and integration into CBORD customer accounts payable, general ledger, and point-of-sale software allow CBORD customers to leverage current systems when interfacing with NetMenu. GET: GET serves as a centralized, cloud-based platform tailored for organizations utilizing the CBORD card/cashless system, aimed at elevating the quality of service provided to their patrons, expanding patron engagement with the cashless program, and driving user involvement and revenue growth. GET offers an integrated experience that aligns with the expectations of today's students, particularly within the ever-evolving mobile landscape through the CBORD platform. Within the GET platform, users have access to real-time balance information, transaction history, the capability to report a lost or found card, and the convenience of making deposits using a credit card. Furthermore, GET's core features encompass food ordering, virtual card payment, mobile access, and a loyalty system. GET also supports integration with campus authentication systems and e-commerce merchant accounts for the acceptance of credit card payments. Odyessy Direct: Through Odyssey Direct, university clients have the ability to establish a comprehensive suite of services linked to a customized campus credential. This encompassing suite includes services such as card printing and credential management, photo capture, management of meal plans, debit and credit accounts, point-of-sale transactions for dining and retail, attendance tracking, as well as eligibility verification. Furthermore, the use of campus card payments is seamlessly integrated into various aspects of university life. These payment capabilities extend to dining services, vending machines, laundry facilities, photocopying and printing services, parking facilities, university bookstores, e-commerce platforms, and even select off-campus dining establishments. A dedicated mobile application ensures round-the-clock accessibility, empowering university students with access to their account information and service details. Beyond the administrative aspects of managing their campus card account, students can leverage this application to peruse dining menus, place food orders, gain access to their rooms, and, when necessary, employ it for identification purposes. | |||
CGI | CGI US Cloud | Authorized | IaaS | Moderate | 2023-06-06 | SR22031 | Kratos | Patrick Zientek | patrick.zientek@cgi.com | State of Arizona Department of Homeland Security | CGI GTO delivers centralized, highly secure and fully managed solutions specifically designed to support state and local government needs. | ||
CGI | CGI Advantage Cloud | Authorized | SaaS | Moderate | 2024-09-10 | SR24021 | A-Lign | Rosemary Milliken | rosemary.milliken@cgi.com | State of Arizona Department of Homeland Security | CGI Advantage Cloud is a unified multi-tenant SaaS ERP solution that is designed, built, and optimized for the public sector. Our solution provides financial management, procurement, grants, human capital management, payroll, labor cost distribution, time and leave, budgeting, and advanced analytics capability that addresses the public sector’s most complex requirements out of the box. Advantage Cloud requires minimal workarounds or extensions associated with dual-use ERP systems that are built for private sector and then overlaid with public sector features. | ||
Cisco | Cisco Meraki for Government | Authorized | saaS | Moderate | 2024-07-25 | SR24008 | Coalfire | James huan | jamhuan2@cisco.com | Cisco Meraki for Government provides a secure and efficient way to support your networking transformation within budget. Our cloud-managed platform simplifies networking to make it easier to deploy, manage, and optimize networks – driving IT modernization and enabling hybrid work. Meraki helps future proof networks and allows agencies to stay ahead of changing citizen and regulatory demands while improving employee productivity. Meraki has developed the most sophisticated platform in the industry based on cloud-first operations, network intelligence (AI), and open APIs to better integrate and automate processes, while providing a way to customize the monitoring and management of a network. The Meraki platform is built with a modern cloud-managed architecture that is able to quickly scale to meet the needs of customers worldwide. We have taken that knowledge and technical sophistication to create a tailored solution for the U.S. Government. Our solution gives government agencies the ability to quickly deploy, scale and manage cloud networks anywhere in the world in an effort to help meet their cloud-first initiatives. Security is a high priority of our solution, which is why we created a separate platform that stores data on U.S. soil and includes FIPS to further protect government telemetry data from device to cloud. Meraki will offer certain MS (Switching), MR (Wireless) and MX (Security and SD-WAN) devices as part of the offering. | |||
Cisco Systems, Inc. | Umbrella for Government | Authorized | SaaS | Moderate | 2024-01-22 | SR23050 | Coalfire | James Huang | jamhuan2@cisco.com | Cisco Umbrella for Government is a Cloud driven Secure Internet Gateway that provides protection from Internet based threats, for users wherever they go. Umbrella’s network is capable of processing billions of requests per day, analyzing and learning internet activity to determine where attacks are being staged, so it can block requests to unwanted and malicious destinations before a connection is even established. Cisco Umbrella for Government is a SaaS environment hosted on AWS GovCloud providing Cisco Umbrella services to government customers. Umbrella services hosted within Cisco Umbrella for Government are based on Cisco product lines available to end customers. The Cisco Umbrella for Government environment is designed and operated based on security compliance and operations best practice by automating the build and operational processes as much as possible using Infrastructure as Code (IaC), CIS benchmarks, vulnerability scanning, continuous monitoring of critical security controls and a managed system development process to obtain initial and continuous FedRAMP Moderate Approval to Operate (ATO). With the initial ATO, Cisco will be launching DNS-layer-security initially, GovDNS: DNS-layer security helps protect customers users on and off the network by stopping threats over any port or protocol before they reach customer network or endpoints. This will be followed by Secure Web Gateway, Cloud delivered Firewall, CASB, and DLP features. Cisco Umbrella for Government is hosted within AWS GovCloud as the Cloud Service Provider (CSP) which assures product lines are maintained in a secure and trusted environment. Umbrella for Government boundary includes the Production environment consisting of virtual compute, storage, databases, and internal management web applications. Umbrella for Government’s external Identity Provider (IdP) Okta (IDaaS Regulated Cloud) is used in tandem with AWS IAM supporting Single Sign-on (SSO) services. Duo Federal is used for multifactor authentication (MFA). Cisco Umbrella for Government meets GovCloud Moderate requirements with specific categorization of Moderate Confidentiality, Moderate Integrity, Moderate Availability (M-M-M) with no privacy data overlay based on the FedRAMP Federal Information Processing Standard (FIPS) 199 Categorization Template. Cisco Umbrella for Government is designed with defense-in-depth protection for hosted applications and workloads using network filtering, multifactor authentication, transport layer security, data-at-rest protection, near real time audit collection and analysis, intrusion detection, vulnerability analysis and system backups. | Application Security,Cloud Security,Network Security, | ||
Cisco Systems, Inc. | Cloudlock | Authorized | SaaS | Moderate | SR23049 | Coalfire | James Huang | jamhuan2@cisco.com | Cisco Cloudlock is the cloud-native Cloud Access Security Broker (CASB) that helps accelerate use of the cloud. Cisco Cloudlock secures your cloud users, data, and apps, combating account compromises, data breaches, and cloud app ecosystem risks, while facilitating compliance through a simple, open, and automated API-driven approach. Cisco Cloudlock is a simple, open, and automated solution that combats cloud account compromises, malicious insiders, data breaches, compliance violations, and cloud app ecosystem risks. With crowd-sourced security analytics across billions of data points, advanced machine learning, and the data scientist-led CyberLab, Cisco Cloudlock provides actionable cybersecurity intelligence that provides visibility and control over the most critical cloud security risks. Cloud User Security: Cross-platform User and Entity Behavior Analytics (UEBA) for SaaS, IaaS, PaaS, and IDaaS environments leverages advanced machine learning algorithms to detect anomalies. Cloudlock can also detect activities outside of whitelisted countries and actions across distances at impossible speeds. **Cloud Data Security:** Cloud Data Loss Prevention (DLP) continuously monitors cloud environments to detect and secure sensitive information through countless out-of-the-box policies as well as highly-tunable custom policies. Automated response actions can remediate risk in the event of a policy violation, including end-user notifications, encryption, transfer of ownership, quarantine, and more. Cloud App Security: The Cisco Cloudlock Apps Firewall discovers cloud apps connected via OAuth to your corporate environment, and provides a crowd-sourced Community Trust Rating for individual apps, as well as the ability to ban or whitelist them based on risk profile and access scope, increase employee awareness with email alerts, and revoke apps in bulk across the entire user base. | Application Security,Cloud Security,Network Security, | |||
Cisco Systems, Inc. | Duo Federal | Authorized | SaaS | Moderate | 2024-01-22 | SR23048 | Coalfire | James Huang | jamhuan2@cisco.com | Duo’s Federal Editions can verify the identity of users with secure and easy to use two-factor authentication methods that helps public sector entities satisfy NIST 800-63-3 and 53/63/171 authentication requirements. In addition to verifying users’ identities, Duo’s solution checks the security health of every device authenticating into the environment, at the time of access. Admins can use Duo to enforce stricter device and application access policies, such as blocking login requests based on location or anonymous networks. Duo ensures only trusted users and devices can access protected applications. This complete security solution prevents modern attackers that often target multiple areas - including credential theft and the exploitation of known software vulnerabilities affecting outdated software versions. | Access Management,Identity and Access Management, | ||
Cisco Systems, Inc. | Catalyst SD WAN | Authorized | SaaS | Moderate | 2024-08-20 | SR24016 | Lazarus Alliance | James Huang | jamhuan2@cisco.com | StateRAMP Approvals Committee | Cisco Catalyst SD-WAN for Government (SDWAN-G), powered by Cisco Viptela/IOS XE, is a highly secure, cloud-scale architecture that is open, programmable, and scalable. All vetted and monitored through the rigorous FedRAMP authorization process. Use it to connect data centers, branches, campuses, and colocation facilities to improve network speed, security, and efficiency. Cisco Catalyst SDWAN-G is a cloud-delivered overlay WAN architecture connecting branches to data centers and multi-cloud environments through a single fabric and single pane of glass. Cisco Catalyst SDWAN-G helps ensure a predictable user experience for applications optimized for SaaS, IaaS, and PaaS connections. Comprehensive on-premises and cloud-based security protect against cyberthreats while enabling IT teams to accelerate the transition to a Secure Access Service Edge (SASE) architecture where and when it is needed. Cisco Catalyst SD-WAN Government (SDWAN-G) is owned, operated, and supported directly by Cisco for use in government offerings, providing the following capabilities: - Enhanced Visibility: Extend your network visibility and observability with our core government self-service portal. You'll gain actionable insights to help you transform network operations from reactive to highly proactive model. - Right Security, Right Place: On-premises or cloud-based security with secure SDWAN-G helps to accelerate the transition to a secure access service edge (SASE) architecture where and when it's needed. - Operational Simplicity: With a highly visualized interface and intuitive user experience for simplified configuration, management, operation, and monitoring across the Cisco Catalyst SDWAN-G fabric. The Cisco Catalyst SDWAN-G solution comes with pre-configured templates to automate and expedite the deployment of most common use cases. Guided step-by-step configuration designed to intelligently expedite onboarding of new devices, and full integration of unified communication, and security into Cisco Catalyst SDWAN-G. The Cisco Catalyst SDWAN-G solution is segregated into four planes with four key components: Manager - In the management plane, the Cisco Catalyst SD-WAN Manager is the centralized network management system and represents the user interface of the solution. Network administrators and operators can configure, provision, troubleshoot, and manage the entire overlay network from a simple graphical dashboard. Validator - In the orchestration plane, the Cisco Catalyst SD-WAN Validator automatically orchestrates connectivity between edge devices and Controllers. The Validator is largely responsible for the provisioning process as well as first-line authentication, control/management information distribution, and facilitating Network Address Translation (NAT) traversal. Controller - In the control plane, the Cisco Catalyst SD-WAN Controller is the component responsible for enforcing policies centrally. When branches come online, their routing information is exchanged with the Controller and not directly with other branches. The Controller works with the Validator to authenticate edge devices as they join the network and to orchestrate connectivity among the edge devices. Edge Devices - In the data plane, the Edge devices are responsible for establishing the network fabric and handle the transmission of data traffic. Edge devices come in multiple forms, virtual and physical, and are selected based on the connectivity, throughput, and functional needs of the site. The operating system of the Edge devices is securely developed and tested as part of Cisco’s Secure Development Lifecycle (CSDL) prior to releasing a version for the customer to deploy. In-boundary scanning of the operating system deployed with Edge devices for Cisco Catalyst SDWAN-G are scanned as part of Cisco’s continuous monitoring strategy. Collectively, the architecture of the Cisco Catalyst SDWAN-G fabric simplifies IT operations with automated provisioning, unified policies, streamlined management to help ensure rapid updates and resolutions, advanced network functionality, resiliency, and security. From a single pane of glass, Cisco Catalyst SDWAN-G helps organizations avoid complex configurations and frequent policy changes that lead to uneven user experiences, thereby increasing overall network efficiency and reliability. | ||
Cisco Systems, Inc. | AppDynamics | Authorized | SaaS | Moderate | 2024-08-20 | SR24017 | Schellman & Company | James Huang | jamhuan2@cisco.com | StateRAMP Approvals Committee | AppDynamics GovAPM is a software-as-a-service (SaaS) application performance monitoring (APM) solution. AppDynamics GovAPM provides end-to-end visibility into the performance of applications. AppDynamics application performance monitoring and business intelligence solutions provide organizations real-time visibility into application environments and strategic insights that drive business outcomes. By utilizing industry-leading monitoring and analytics features, IT departments can automatically identify performance anomalies and resolve issues before they impact customers or revenue streams. Our unique combination of application performance and business metrics gives enterprises the power to deliver reliable performance and a flawless customer experience. | ||
Cisco Systems, Inc. | CISCO UNIFIED COMMUNICATIONS MANAGER CLOUD FOR GOVERNMENT (CISCO UCM CLOUD FOR GOVERNMENT) | Authorized | SaaS | Moderate | 2024-09-17 | SR24019 | Coalfire | James Huang | jamhuan2@cisco.com | StateRAMP Approvals Committee | Cisco Unified Communications Manager Cloud for Government (Cisco UCM Cloud for Government) is a complete unified communications service from the Cisco Cloud. It is built to provide government-level security so that organizations can collaborate with anyone, anywhere, on any device. The service is hosted by Cisco, sold by Cisco Powered partners. Cisco UCM Cloud for Government provides these core services: Voice and Video Calling:Simplify with industry-leading voice and video as a service. Cisco UCM Cloud for Government provides voice and video call control and supports Cisco's newest voice and video endpoints ranging from desktop phones, immersive video rooms and mobile and desktop clients. Voicemail and Integrated Messaging:Access messages the way you prefer from your desk phone, mobile phone, or desktop client. Instant Messaging and Presence:Cisco Jabber lets you find the right people, see if and how they are available, and collaborate using your preferred method. Use Cisco Jabber for presence, instant messaging (IM), voice and video calling, voice messaging, desktop sharing, and conferencing. Single App Experience:Webex for Government and Webex App allows customers to call, meet, and message on any device with a single unified application from Webex. Webex App brings together Cisco UCM Cloud for Government call control along with market leading Webex Meetings technology and advanced team collaboration capabilities including persistent messaging and file sharing. Conferencing:Use Cisco conferencing solutions to meet and manage meetings and projects in real time, to present, share, or collaborate from anywhere, anytime, on any device. Mobility:Cisco UCM Cloud for Government gives your mobile and remote users the freedom to be productive from anywhere, on any device. Give users one number to dial, redirect incoming calls to designated phones, move calls between a Cisco desktop and mobile phones, create personalized access lists, and give access to all your corporate collaboration features from mobile phones using Webex App or Cisco Jabber. | ||
Cohesity | Cohesity Cloud Services for Government | Authorized | SaaS | Moderate | 2024-05-23 | SR24007 | Marlon Hughes | stateramp@cohesity.com | StateRAMP Approvals Committee | Cohesity Cloud Services for Government is a portfolio of fully-managed data security and management offerings, including backup as a service (BaaS) for protecting mission-critical cloud-native, SaaS, and on-premises workloads. The multi-layered data security architecture, policy-based automation, and global data reduction help secure and protect data, and simplify IT operations. Flexible data retention and rapid recovery to any point in time enable organizations to meet their demanding business SLAs and improve ROI. | |||
Collabware | Collabspace | Authorized | SaaS | Moderate | 2024-04-02 | SR23045 | Kratos Defense | Douglas Converse | dconverse@collabware.com | Collabspace is a highly scalable, cloud-based records and information management solution. Collabspace enables organizations to stream content from multiple repositories into a data lake for the purposes of managing content lifecycle for regulatory compliance, and to facilitate faster execution of FOIA requests processes. Collabspace employs advanced enterprise search and records management capabilities such as OCR and audio/video transcription to help categorize and analyze records for proper retention and disposition. | Document Management,Data Management,E-Discovery, | ||
Constellation GovCloud | Constellation GovCloud | Authorized | PaaS | Moderate | 2024-01-22 | SR23054 | Fortreum | Jason Oksenhendler | joksenhendler@cgc.cloud | Constellation GovCloud® is a cloud marketplace where partners are able to not only accelerate StateRAMP authorization, but also accelerate their time to revenue by leveraging the same GovCloud to connect to public-sector buyers. | General Support System, | ||
Continuum GRC, Inc. | Continuum GRC ITAM | Authorized | SaaS | Moderate | 2022-02-11 | 2022-04-26 | SR21041 | Sentar, Inc. | Michael Peters | michael.peters@continuumgrc.com | StateRAMP Approvals Committee | Auto-mapped standards, automated documentation, real-time status, risk & maturity. When it comes to Compliance Cartography, no one is more comprehensive, secure and automated, saving you time, trouble and money. Serving the enterprise to the start-up community. Continuum GRC is a software as a service (SaaS) product that is purpose built for users who perform audit & compliance assessments, risk assessment & risk management, governance & policy development, and all other manner of audits and assessments. Continuum GRC modules include support for the world’s frameworks, including NIST 800-53. DoD SRG, CMMC, 800-171, 800-66, 800-30, FedRAMP, StateRAMP, CJIS, DFARS, HIPAA, ITRM, AICPA SOC 1, SOC 2, GDPR, ISO 27001, NERC CIP, EUCS, C5, PCI DSS, LADMF and hundreds of others. In addition to pre-configured questionnaires, assessment modules, and forms, the Continuum GRC ITAM SaaS application has creation tools that provide drag-n-drop easy custom creation for system administrators to construct their own assessment modules in 26 languages. Real time reports on Compliance Status, Risk Scores, Maturity Scores, workflows, tasking records, evidence management, and historical performance helping you stay proactive; not reactive. Use Continuum GRC to replace existing tools, templates, and manual processes in place to support internal compliance and GRC requirements. The automation of Continuum GRC reduces manual labor, complexity of and between frameworks, produces reports, SSPs, POA&Ms, graphics, dashboards, and related outputs all sustained over the entire lifecycle of the program all within a single view with a unified source for governance, risk and compliance that supercharges performance and eliminates complexity. For a complete list of features and capabilities, please visit https://continuumgrc.com/subscription-options/ | |
Devo Technology Inc. | Devo Intelligent SIEM | Authorized | SaaS | Moderate | 2024-04-18 | SR23079 | Coalfire | Melanie Huffman | melanie.huffman@devo.com | Devo is a cloud-native logging and security analytics platform. Devo ingests logs at cloud scale, stores all logs in their native format, and allows the customer to query the data immediately upon initial ingesting. Devo provides multiple applications on the platform including Devo Security Operations and MITRE ATT&CK Advisor allowing the customer’s SOC and IT Operations teams to leverage and collaborate on the same data. Customer-side components have not been included in the FedRAMP authorization process. Note: Client-side data and logging tools such as the Devo Relay, Devo Endpoint Agent, or third-party tools are excluded from the FedRAMP Authorized security boundary however, Devo specific client-side tools will be included within the boundary as part of an upcoming material change. | Network Security,Cloud Security,Application Security,Security Information and Event Management,Incident Response and Management,Data Management, | ||
DocuSign | DocuSign Federal (eSign) | Authorized | SaaS | Moderate | 2023-07-05 | SR22041 | Schellman & Company | Rainer VillaMercado | rainer.villamercado@docusign.com | State of Arizona Department of Homeland Security | DocuSign is a San Francisco- and Seattle-based company that provides electronic signature technology and Digital Transaction Management services to facilitate electronic exchanges of contracts and signed documents. DocuSign’s features include authentication services, user identity management and workflow automation. Signatures processed by DocuSign are comparable to traditional signatures based on the product's compliance with the ESIGN Act as well as the European Union’s Directive 1999/93/EC on electronic signatures. DocuSign eSign for government entities is operated and managed as a government community cloud and provides government customers with an enterprise signing service to facilitate paperless workflow management. | ||
DocuSign | DocuSign CLM | Authorized | SaaS | Moderate | 2023-07-05 | SR23080 | Schellman & Company | Rainer VillaMercado | Rainer.Villamercado@docusign.com | State of Arizona Department of Homeland Security | DocuSign CLM is a secure contract lifecycle management product in DocuSign's Agreement Cloud. DocuSign CLM manages contracts in addition to all other types of documents across desktop, mobile, and partner applications like Salesforce. DocuSign CLM goes beyond standard document and contract management with advanced workflows that automate manual tasks and complex processes to speed time-to-revenue. Businesses use DocuSign CLM to optimize collaboration and processes across internal departments, as well as with prospects and customers. | ||
Druva Inc. | Druva inSync | Authorized | SaaS | Moderate | 2023-03-28 | SR22021 | Coalfire | Balaji Kalyanasundaram | balajik@druva.com | StateRAMP Approvals Committee | Druva inSync is a fully automated enterprise class endpoint protection solution offered as a Software-as-a-Service (SaaS). Powered by state-of-the-art technology from AWS, Druva inSync offers elastic, on-demand storage that can grow to accommodate any number of users and data. Full administrative control over Druva inSync is provided via a secure Web-based administrator control panel over HTTPS. Druva inSync offers cloud native backup and data protection solutions for information stored on endpoints and in cloud applications. Druva inSync allows immediate access to back up files and folders across all devices and SaaS application like O365. Druva inSync is hosted in Amazon AWS GovCloud Region, which delivers a highly scalable cloud computing platform with high availability, dependability and flexibility. | ||
Dynatrace | Dynatrace for Government | Authorized | SaaS | Moderate | 2022-07-26 | 2022-11-30 | SR21038 | Schellman and Company, LLC | Willie Hicks | willie.hicks@dynatrace.com | State of Michigan | Dynatrace exists to make software work perfectly. Our platform combines broad and deep observability and continuous runtime application security with advanced AIOps to provide answers and intelligent automation from data. This enables agencies to modernize and automate cloud operations, deliver software faster and more securely, and ensure flawless digital experiences. | |
Everlaw | Everlaw | Authorized | SaaS | Moderate | 2024-04-26 | SR22034 | Kratos Defense | Angela Kovach | federal@everlaw.com | StateRAMP Approvals Committee | Everlaw helps legal teams and government agencies navigate the increasingly complex ediscovery landscape to chart a straighter path to the truth. With Everlaw, government agencies of all sizes are able to transform their approach to discovery, litigation, investigations, compliance, and FOIA/Public Records Requests. Combining speed, security, and ease-of-use in a unified discovery platform, cross-functional legal teams are empowered to investigate issues more thoroughly, uncover truth more quickly, and present their findings more clearly. Built natively on AWS GovCloud (US), Everlaw is committed to innovation and future-proofing agencies against emerging data types and other fluctuating needs. Founded in 2010 and based in Oakland, California, Everlaw’s mission is to promote justice by illuminating truth. | ||
Genesys | Genesys Cloud CX | Authorized | SaaS | Moderate | 2023-11-29 | SR23014 | Coalfire | Richard Brown | Fedrampgccx@genesys.com | SAC | Genesys Cloud™ is an AI-powered experience orchestration platform with a full suite of omnichannel contact center capabilities, built-in workforce engagement management (WEM) and artificial intelligence (AI). It is available to the public, federal, state, local, and tribal governments, as well as research institutions, federal contractors and government contractors. Features and capabilities include: All-in-One open platform - Genesys Cloud is a multi-tenant SaaS offering with a comprehensive set of native Contact Center-as-a-Service (CCaaS) product capabilities built on a single platform — running on Amazon Web Services (AWS). Native AI - Genesys Cloud has built-in conversational and predictive AI capabilities. It utilizes technologies such as predictive analytics, machine learning, and natural language understanding to automate, route and personalize interactions. Omnichannel routing - Genesys Cloud supports calls, email, web, text and social messages. A single routing engine leverages a variety of routing algorithms, evaluation and scoring methods to determine the next best action while maintaining context, intent, and desired outcome. Speech-enabled IVR & self-service – Genesys Cloud offers multilingual speech-enabled IVR with natural language understanding (NLU) technology. Automated bot assistants provide continuous support for routine queries. Workforce Engagement Management - A native suite of AI-powered WEM capabilities supports employee onboarding and includes workforce schedule management (WFM), coaching, speech & text analytics, quality management, performance management and gamification. Outbound campaigns – Genesys Cloud supports outbound dialing and digital campaigns for sending proactive notifications or contacting contact lists of people in accordance with programmable rules. Analytics and reporting – Genesys Cloud provides real-time dashboards and analytics for contact center management, with customizable reporting and drill-down capabilities for performance analysis. Integrations - The platform includes a rich set of open APIs, integration methods and an ecosystem of 600+ pre-built solutions and applications available via the AppFoundry® Marketplace. | ||
Google Services | Authorized | IaaS, PaaS, SaaS | High | 2022-10-25 | SR21005 | Coalfire Systems | Ashleigh Laone | stateramp@google.com | Arizona Department of Homeland Security | Google Services is comprised of Google’s multi-tenant public cloud Google Cloud Platform and built atop the Google Common Infrastructure. The Google Common Infrastructure powers Google worldwide. | |||
Google, Inc. | Google Workspace | Authorized | SaaS | High | 2024-04-08 | SR22026 | Coalfire Systems | Ashleigh Laone | stateramp@google.com | Arizona Department of Homeland Security | Google Workspace is a cloud-based offering for enterprise and government customers. Google’s product offerings, including Google Workspace and Application Programming Interfaces (APIs), are comprised of communication, productivity, collaboration and security tools that can be accessed virtually from any location with Internet connectivity. | ||
Human Resources Technologies, Inc. | FedHIVE | Authorized | IaaS | High | 2024-12-17 | SR24003 | Lunarline | Richard Schott | rschott@hrtec.net | StateRAMP Approvals Committee | Federal High Impact Virtualized Environment (FedHIVE) received a FedRAMP’s High Impact Level Joint Authorization Board (JAB) Provisional Authority to Operate (P-ATO) for Infrastructure-as-a-Service (IaaS) and Platform-as-a-Service (PaaS) and a DoD Commercial Cloud (Off-Premises CSO) Impact Level (IL) 4 Provisional Authorization (PA), soon to have IL-5. FedHIVE offers customers a compliant, scalable, and secure infrastructure for the safeguarding of information systems which process and store Controlled Unclassified Information (CUI), supporting the deployment of Software-as-a-Service (SaaS) solutions for Agencies, and the capabilities to assist your organization in accelerating your digital transformation objectives. FedRAMP JAB P-ATO authorized by FedRAMP JAB CISOs from DoD, DHS, and GSA DoD PA authorized by DISA RME RE2 Cloud Assessment Division. | ||
iboss | iboss Government Cloud Platform (IGCP) | Authorized | SaaS | Moderate | 2023-07-24 | SR23024 | A-Lign | Heath Crocker | heath.crocker@iboss.com | StateRAMP Approvals Committee | With over 4,000 customers, including the largest government, financial, insurance, energy and technology organizations, iboss enables government to reduce cyber risk by delivering a FedRAMP Authorized Zero Trust Secure Service Edge that protects resources and users from wherever they work. iboss delivers security capabilities such as SWG, malware defense, browser isolation, CASB and data loss prevention within a completely unified cloud platform to protect all resources, instantaneously and at scale. This shifts the focus from protecting buildings to protecting people and resources wherever they are located. Backed by 230+ issued and pending patents, iboss processes and secures over 150 billion daily network transactions globally, blocking 4 billion threats per day. The iboss Government Cloud Platform enables federal agencies to migrate rapidly into a Zero Trust architecture as mandated by the Presidential Executive Order on Cyber. Jump-start your transformational journey and experience the future of Zero Trust cloud security today. Visit http://www.iboss.com to learn more. | ||
Infoblox | BloxOne Threat Defense Federal Cloud | Authorized | SaaS | Moderate | 2024-04-29 | SR23074 | Kratos Defense | Chris Carlson | ccarlson@infoblox.com | StateRAMP Approvals Committee | B1TD FedCloud is a suite of capabilities that enable organizations to defend their networks, conduct threat investigations and research, and provide rapid correlation and contextualization to minimize incident response times. B1TD FedCloud contains millions of verified indicators in vendor-agnostic formats that may be exported to facilitate detection, blocking, and containment of modern malware (e.g., Advanced Persistent Threats (APTs), ransomware, phishing, exploits) via an open application programming interface (API) and an analyst research portal. | ||
Innovative Driven | Innovative Driven Government Cloud | Authorized | SaaS, IaaS | Moderate | 2022-08-02 | 2022-10-04 | SR22011 | Lunarline | Jamie Neilon | jamie.neilon@id-edd.com | Sacramento County | The Innovative Driven Government Cloud (ID Gov-Cloud) is a Software as a Service (SaaS) offering that provides secure and scalable government legal document services within a compliant cloud environment. Built on industry-leading technologies Relativity and Nuix and paired with expert consulting, agencies can leverage the full scope of eDiscovery services within one scalable platform, including (but not limited to) processing, document review, advanced analytics, assisted review, legal hold services, and production. Every service package is within a secure and user-friendly customer interface. Government agencies also gain the added capabilities of Innovative Discovery's government project management teams and optimal workflows, benefitting from years of experience supporting complex government electronic discovery requests. | |
Jamf | Jamf School | Authorized | SaaS | Moderate | 2023-09-05 | 2024-12-16 | SR23015 | Coalfire | Wendy Kong | wendy.kong@jamf.com | Jamf School is a purpose-built mobile device management solution (MDM) for schools. Jamf School enables educators to deploy and manage Apple devices simply. | ||
Juniper Networks | Juniper Mist | Authorized | SaaS | Moderate | 2024-01-22 | SR23032 | A-Lign | Marquel Waites | mist-security@juniper.net | Juniper Mist Government Cloud uses a combination of artificial intelligence, machine learning, and data science techniques to optimize user experiences and simplify operations across the wireless, wired, and SD-WAN branch and campus environments. Data is ingested from numerous sources, including Juniper Mist Access Points, Switches, Session Smart Routers (SSR), and Firewalls (SRX) for end-to-end insight into user experiences. These devices work in concert with Mist AI to optimize user experiences from client to cloud, including automated event correlation, root cause identification, Self-Driving Network? operations, network assurance, proactive anomaly detection, and more. Juniper also leverages Mist AI for next-generation customer support. For example, it is the foundational element behind Marvis, the industry’s first AI-driven Virtual Network Assistant, providing extensive insight and guidance to IT staff via a natural language conversational interface. As a result, Mist AI saves operators time and money with faster problem resolution and fewer onsite visits. In addition, users benefit from a network infrastructure that is more predictable, reliable, and measurable. Marvis Virtual Network Assistant is the first virtual network assistant (VNA) purpose-built with Mist AI for enterprise WLANs, LANs, and WANs. It transforms network operations from reactive troubleshooting to proactive remediation through self-driving actions. Juniper Wi-Fi Assurance service is based on machine learning and driven by Mist AI. It replaces manual troubleshooting tasks with automated wireless operations to make Wi-Fi predictable, reliable, and measurable, providing unique visibility into user service levels. Juniper Mist Wired Assurance service brings Mist AI to switching. It sets a new network management standard with AI-driven operations and automation, improving the experiences of devices connected to resources through Juniper EX/QFX Series Ethernet Switches for branch and campus deployments. Juniper Mist WAN Assurance service simplifies operations and improves visibility into end-user experiences while shortening the time to repair wired and wireless devices. Premium Analytics offers network visibility and business intelligence to drive your digital transformation journey. | |||
Kahua | Kahua Federal Network | Authorized | SaaS | Moderate | 2023-12-06 | SR23038 | Schellman & Company | Colin Whitlatch | cwhitlatch@kahua.com | Government, contractors and public entities use Kahua`s collaborative construction management solutions to improve efficiency, lower costs and reduce project risk throughout the lifecycle of their capital programs. Kahua’s purpose-built solutions for government, program managers and contractors enable rapid implementation that minimizes time-to-value and enhances user adoption. And with the industry’s only low-code application platform agencies can easily customize existing Kahua apps or even build their own new apps to run their programs and projects at peak efficiency today and rapidly adapt as conditions dictate. | |||
Keeper Security Inc. | Keeper Security Government Cloud | Authorized | SaaS | Moderate | 2022-11-30 | SR22012 | A-Lign | Patrick Tiquet | patrick@keepersecurity.com | California Department of Technology | Keeper Security Government Cloud (KSGC) transforms the way government organizations protect their operations against password-related data breaches and cyberthreats including ransomware and phishing attacks. KSGC provides IT administrators with visibility, management and control over their organization’s password security, monitoring and reporting. The KSGC cybersecurity platform utilizes a zero-trust framework and zero-knowledge security architecture and integrates with on-premise, cloud and hybrid-cloud environments. KSGC utilizes granular, role-based administrative controls including delegated administration. IT Administrators can enforce critical internal control policies including password complexity, IP white listing, two-factor authentication and Data Loss Prevention (DLP). KSGC’s modern provisioning tools allow organizations to rapidly deploy cybersecurity protection to thousands of users, on all their devices, and can integrate with any identity stack including AD, LDAP, SSO (SAML), SCIM and APIs. The cybersecurity platform includes robust event logging, reporting and auditing capabilities with seamless integration with Security Information and Event Management (SIEM) systems. | Access Management,Cloud Security, | |
Kelmar Associates | KAPS | Authorized | SaaS | Moderate | 2024-09-17 | SR23035 | Jon Dougherty | jon.dougherty@kelmarassoc.com | Not Required | KAPS is delivered by Kelmar as a software-as-a-service solution. KAPS builds on three generations of unclaimed property systems and utilizes the latest technology advancements to provide a cost effective, highly scalable, configurable unclaimed property management solution for state governments. KAPS allows unclaimed property government agencies to automate and efficiently administer aspects of their programs utilizing a business intelligence platform that is user friendly and intuitive. KAPS provides complete on-screen capabilities to manage the entire unclaimed property process from the initial loading of reports and receipts to the ultimate payment of successful claims. KAPS features management tools for: Administrative and Workflow handling Holder Reports Receipts Processing Securities Tangible Property Claims Owner Outreach Holder Compliance and Reporting. KAPS also integrates with additional Kelmar offerings inclusive of Kelmar’s State Website Solution Claims Fast Track Integration and Identification Verification Kelmar’s Fraud Index and related LexisNexis® ThreatMetrix® Solution. | |||
MapLarge, INC | MapLarge | Authorized | SaaS | Moderate | 2024-09-17 | SR24013 | A-Lign | Marvell Summerow | marvell.summerow@maplarge.com | Not Required | MapLarge provides software for location intelligence analysis that runs on servers either in the cloud or on premise. MapLarge user interfaces accessed by users in web browsers or native applications on any desktop of mobile device. Customers are typically large enterprises that build their own custom solutions on top of MapLarge in a wide variety of use cases ranging from visualizing business trends, to planning flight paths, to global situational awareness for large security teams. MapLarge supports data import, editing, visualization and alerting based on a wide variety of data sources including both flat files, real time streaming connections and numerous other industry specific like ArcGIS data connectors. MapLarge processes customer data that may take any form supported by the product but typically has one or more location intelligence attributes like latitude and longitude or street address. Customer data can be visualized in a wide variety of ways including as maps, charts, lists, or exported as Portable Document Formats (PDFs), images or data files. | ||
Mark43 | Mark43 Public Safety Platform | Authorized | SaaS | High | 2023-10-04 | SR22045 | Kratos Defense | N/A | registrations@mark43.com | The Mark43 service offering provides a public safety CAD, RMS, analytics, and property and evidence platform. The Mark43 platform provides security and law enforcement capabilities to support functions such as situational awareness, information sharing, investigations, homeland defense, security missions, domestic emergency responses, and military support to civil authorities. Additionally, the platform provides emergency management and critical communications capabilities in support of public safety organizations, facilities, first responders, and force protection activities. | |||
Microsoft | Office 365 Multi-Tenant & Supporting Services | Authorized | SaaS | Moderate | 2024-07-22 | SR23056 | Kratos Defense | Brian Smith | smith.brian@microsoft.com | Office 365 (O365) Multi-Tenant & Supporting Services (MT) is a product family of cloud-hosted messaging and collaboration services with non-government and government instances. These cloud-based services are designed to provide organizations with streamlined communication, high availability, comprehensive security, and simplified information technology (IT) management. O365 MT provides the interactivity of on-premises client and server applications with the flexibility and scalability of web-based services. O365 leverages Azure as the IaaS/PaaS for the underlying infrastructure and hardware. Therefore, O365 relies on Azure-inherited services. For more information on these Azure services, refer to the Azure ATO package. | Document Management,Content Collaboration,Communications Systems,Cloud Services,Cloud Security, | ||
MicroStrategy, Inc. | MicroStrategy Cloud for Government | Authorized | SaaS | Moderate | 2023-03-27 | SR22040 | A-Lign | Samuel Petreski | spetreski@microstrategy.com | StateRAMP Approvals Committee | MicroStrategy is the world’s top-rated platform for enterprise analytics. The MicroStrategy Intelligence Platform offers a full range of trusted, modern BI experiences, and is designed to help departments and agencies build data-driven cultures and make faster, smarter decisions. Built for performance at scale, MicroStrategy delivers concrete answers to users where and when they’re needed. Foundationally, the platform offers out-of-the-box drivers and gateways for a variety of data sources, types, and formats, and APIs/SDKs which are hosted within the MicroStrategy Platform Deployed within Customer Tenant. Using the platform’s proprietary enterprise semantic graph, agencies can establish a unified, governed, secure, and reusable data model on which a variety of intelligence solutions can be built to deliver accurate, personalized, and trusted information to individual users based on each agency’s enterprise data dictionary. The MicroStrategy Cloud for Government is a fully managed enterprise analytics solution that offers all the market-leading capabilities of the MicroStrategy Intelligence Platform on a unique Amazon Web Services (AWS) GovCloud implementation. MicroStrategy Cloud for Government features a fully optimized reference architecture built specifically for deployment in a customer-licensed AWS environment, offered as a software-as-a-service (SaaS) solution. MicroStrategy administers each unique MicroStrategy Cloud for Government environment on the behalf of each government department or agency, including steady state operations, routine application of software upgrades, robust system monitoring and alerting, and 24/7/365 technical support for priority issues. The components that directly support the MicroStrategy Cloud for Government cloud service offering are described in the subsections below. MicroStrategy Cloud for Government is a SaaS service built on top of AWS GovCloud (US) IaaS servers. MicroStrategy utilizes AWS GovCloud (US) to provide the resources that host the MicroStrategy Cloud for Government platform and leverages the experience and resources of AWS to scale quickly and securely as necessary to meet current and future demand. MicroStrategy is responsible for designing and configuring the MicroStrategy Cloud for Government architecture within AWS GovCloud (US) to ensure that the availability, security, and resiliency requirements are met. | ||
Motorola Solutions | Motorola Solutions Federal Cloud | Authorized | SaaS | High | SR23055 | Kratos Defense | MSFC Compliance Team | MSIFedRAMPCompliance@motorolasolutions.com | StateRAMP Approvals Committee | Motorola Solutions is expanding its “Mission Critical Ecosystem” which consists of a suite of software and technology that supports mission critical communications in evolving ways and that provides fast access to actionable information. The purpose of the Motorola Solutions Federal Cloud (MSFC) is to serve as the platform upon which the applications and solutions that are part of this Mission Critical Ecosystem will securely operate to provide our U.S. state and local users with enhanced capabilities. Primary to our cloud offering as our initial secure cloud application is the APX NEXT smart radio, a next-generation P25 platform purpose-built for first responders to access and act on information while maintaining focus in critical situations. The Motorola Solutions Federal Cloud enables APX NEXT and additional SaaS services to provide new Common Operating Picture (COP) capabilities to U.S. state and local users, law enforcement officers (LEOs), first responders, and public safety personnel in the field with a new ownership experience to operations and support personnel. The underlying Motorola Solutions Federal Cloud architecture is reinforced by a modern and comprehensive application of security technology. Once deployed, our cloud services production systems are monitored 24x7x365 by Motorola Solutions’ Security Operations Center using state-of-the-art Security Information and Event Management (SIEM) technology. | Communications Systems,Infrastructure, | ||
OCLC | WorldShare Management Services | Authorized | SaaS | Low | 2021-09-29 | 2023-12-28 | SR21009 | Schellman and Company, LLC | Tina Price | pricet@oclc.org | OCLC is a nonprofit global library organization. Through OCLC, member libraries cooperatively produce and maintain WorldCat, the world’s most comprehensive global network of data about library collections and services. | ||
Okta | Okta IDaaS | Authorized | SaaS | Moderate | 2021-11-19 | 2024-09-04 | SR21015 | Schellman and Company, LLC | Sean Frazier | sean.frazier@okta.com | State of Arizona | The Okta IDaaS Regulated package includes a number of components that may be used to provide methods of authentication and provisioning control including Okta core, Okta Mobile, Okta Verify, Okta Directory Agent, and Okta IWA Agent. | |
OPEXUS | eCase | Authorized | SaaS | Moderate | 2023-07-24 | SR22010 | Fortreum | Srinivas | Sristy | StateRAMP Approvals Committee | eCase is a dynamic case management and rapid application development platform that empowers professionals to elevate trust in public institutions. With secure and collaborative information and document management, robust reporting, adaptive workflows, role-based security, and comprehensive audit trail capabilities, eCase helps public sector clients automate processes, reduce costs, improve transparency, and ultimately achieve better outcomes with less risk while maintaining compliance within demanding regulatory environments. eCase and eCase COTS solutions (including FOIAXpress Correspondence, OIG Audits and Investigations, and Government Workforce Management) are FedRAMP-moderate certified PaaS/SaaS. For more information, visit opexustech.com. | ||
Oracle | Oracle Taleo Cloud | Authorized | SaaS | Moderate | 2024-07-30 | SR24002 | Coalfire | Ben Ware | ben.ware@oracle.com | StateRAMP Approvals Committee | Oracle Taleo Cloud services are Oracle’s Software as a Service (SaaS) solution, providing a comprehensive talent management and learning service. Taleo Enterprise Edition offers a comprehensive talent management suite that spans the entire employee lifecycle and helps companies hire, manage, reward, and develop their employees with a full talent management solution for recruiting and on boarding, performance management, employee development and succession planning. Since Taleo Enterprise Edition is built on a single unified platform and delivered on demand, you can implement a single module or the full solution based on your needs. Oracle’s Taleo Learn Cloud offers an employee development and training software solution that supports the learning challenges of large complex enterprises. Taleo Learn links human resources management to learning with Talent Intelligence. The Taleo Learn Cloud Service is a solution for delivering, tracking, managing, and reporting on formal and informal learning. Users have access to learning through a single platform for online, classroom, virtual, and on-the-job training, as well as assessments, blended learning, social learning, and self-reported training. Organizations can design a tailored user experience with complete control of the user interface. | ||
Oracle | ORACLE CLOUD INFRASTRUCTURE-GOVERNMENT CLOUD | Authorized | IaaS, Paas | Moderate | 2024-06-24 | SR23081 | Coalfire | Rico McGee | rico.mcgee@oracle.com | StateRAMP Approvals Committee | Oracle Cloud Infrastructure is a set of complementary cloud services that enable you to build and run a wide range of applications and services in a highly available hosted environment. Oracle GovCloud Infrastructure (OCI) offers high-performance compute capabilities (as physical hardware instances) and storage capacity in a flexible overlay virtual network that is securely accessible from your on-premises network. | ||
Orca Security, Inc. | Orca Cloud Security Platform | Authorized | SaaS | Moderate | 2024-07-08 | SR24006 | Fortreum | Louis Simonen | louis@orca.security | Orca Security provides an agentless Cloud Security Platform that discovers all cloud assets, and identifies, prioritizes, and remediates risks and compliance issues across your cloud environments. The platform detects cloud risks, including vulnerabilities, malware, misconfigurations, API risks, lateral movement risks, weak and leaked passwords, and overly permissive identities. Orca deploys in minutes, provides visibility into all your assets, and automatically includes new assets as they are added. The Orca Platform helps federal agencies and contractors achieve regulatory compliance with over 65 out-of-the-box frameworks, CIS Benchmarks, and custom compliance checks. Leveraging a Unified Data Model, Orca performs contextual analysis of all the risks in your cloud estate, uncovering potential attack paths (with references to the MITRE ATT&CK framework), enabling rapid identification of which risks present the highest danger to mission data and security objectives. | |||
Palo Alto Networks | Government Cloud Services (GCS-High) | Authorized | SaaS | High | 2024-02-28 | SR23031 | Fortreum | Lauren Aloway | laloway@paloaltonetworks.com | State of Arizona | Palo Alto Networks Government Cloud Services (GCS-High) includes a variety of cloud-based cybersecurity offerings. As your agency moves forward in its modernization efforts, it needs trusted cybersecurity solutions that will reduce the risk of data breaches while meeting compliance. Develop a comprehensive cloud cybersecurity strategy with solutions that protect workers, data and applications from cyber adversaries and advanced threats. The following products and services make up our offering. Cloud Identity Engine Identity-based security controls are a foundational requirement to achieve Zero Trust. Palo Alto Networks Cloud Identity Engine is an entirely new cloud-based architecture for identity-based security that can consistently authenticate and authorize your users, regardless of location and where user identity stores live—on-premises, in the cloud, or hybrid. As a result, security teams can effortlessly allow all users access to applications and data everywhere and quickly move toward a Zero Trust security posture. Cortex XDR A cloud-based service providing a prevention, detection and response platform that integrates network, endpoint, and cloud data to stop sophisticated attacks. Cortex XDR leverages logs, alerts, and information from Palo Alto Networks and third-party security products. It also enforces security policies on endpoints, preventing malware and data loss. Cortex XDR correlates security alerts and network logs with the endpoint processes that generated the alerts, allowing customers to investigate security alerts, as well as search for and remotely respond to threats. Cortex XSOAR A comprehensive security orchestration, automation, and response (SOAR) platform that unifies case management, automation, real-time collaboration, and threat intelligence management to serve security teams across the incident lifecycle. Cortex XSIAM A cloud-delivered, integrated SOC platform that unifies key functions, including EDR, XDR, SOAR, ASM, UEBA, TIP, and SIEM, consolidating multiple products into a single, integrated platform. XSIAM delivers an intelligent data foundation by integrating telemetry from any source, providing unified security operations across any hybrid IT architecture. Cortex Xpanse An active attack surface management solution that helps your organization discover, understand and respond to unknown risks in all internet-connected systems and services. Xpanse scans the entire internet automatically and continuously, discovering and indexing previously unknown risks, using supervised ML models to continuously map your attack surface and prioritize remediation efforts, while reducing MTTR with the help of built-in automated playbooks. Prisma Cloud A cloud native security platform that provides comprehensive visibility, threat prevention, compliance assurance and data protection consistently across hybrid and multi-cloud environments. Prisma Cloud Compute A cloud-native platform that delivers cloud workload protection. Prisma Cloud Compute provides holistic protection across hosts, containers, and serverless deployments in any cloud, throughout the software lifecycle. Prisma Cloud Compute protects all workloads regardless of their underlying compute technology or the cloud in which they run. In addition, it provides Web Application and API Security (WAAS) for any cloud native architecture. WildFire Government Cloud An analysis and prevention engine for highly evasive zero-day exploits and malware. The cloud-based service employs a unique multi-technique approach combining dynamic and static analysis and innovative machine learning techniques to detect and prevent even the most evasive threats. It is a subscription service that works with the Palo Alto Networks Next Generation Firewalls (including VM-Series and CN-Series), Prisma Access, Prisma Cloud, Cortex XSIAM, and Cortex XDR. Prisma Access A Secure Access Service Edge (SASE) that provides scalable, cloud-delivered networking and security to branch offices and remote users. With Prisma Access, agencies are able to rapidly enable consistent, secure connectivity for remote locations and employees. Prisma SD-WAN Prisma SD-WAN enables branch services such as networking and security to be delivered from the cloud, simplifying WAN management. The controller provides deep application visibility, with Layer 7 intelligence for network policy creation and traffic engineering. It automates operations and problem avoidance using machine learning and data science methodologies. Cloud Management A cloud delivered management solution used by customers to manage Prisma SASE from Palo Alto Networks. Multi-Tenant Service Provider Portal (MSP) The MSP solution provides hierarchical multi-tenant management for customers and partners PRISMA INSIGHTS Prisma Insights provides a comprehensive platform for global visibility and monitoring for the Prisma Access service. It continuously monitors the health and performance of your Prisma Access environment with Insights in the Prisma Access app. ADEM Autonomous Digital Experience Management (ADEM) provides organizations with segment-wise insights, comprehensive visibility, and SASE-native DEM integrated with Prisma SASE, the secure foundation for agile, cloud-enabled organizations. API Gateway The API Gateway provides authorization services for customers and partners to leverage Palo Alto Networks RESTful API Data Loss Prevention Data Security Palo Alto Networks’ Enterprise DLP software-as-a-service system is a network DLP service to prevent Data Loss of sensitive data. The solution helps facilitate an organization’s data protection and compliance efforts in a simplified and cost-effective manner. SAAS API / Inline / SSPM SaaS Security is a solution that helps Security teams meet the challenges of protecting the growing availability of sanctioned and unsanctioned SaaS applications and maintaining compliance consistently in the cloud while stopping threats to sensitive information, users and resources. SaaS Security options include SaaS Security API, SaaS Security Inline, and SaaS Security Posture Management (SSPM). Advanced WildFire An analysis and prevention engine for highly evasive zero-day exploits and malware. The cloud-based service employs a unique multi-technique approach combining dynamic and static analysis and innovative machine learning techniques to detect and prevent even the most evasive threats. APP-ID Cloud Engine - ACE A platform that enables the firewall or Panorama to download App-IDs from the cloud for applications that do not have specific predefined App-IDs from the Palo Alto Networks content releases. Threat Prevention The Palo Alto Networks® Threat Prevention protects and defends your network from commodity threats and advanced persistent threats (APTs). The multi-pronged detection mechanisms include a signature-based (IPS/Command and Control/Antivirus) approach, heuristics-based (bot detection) approach, sandbox-based (WildFire) approach, and Layer 7 protocol analysis-based (App-ID) approach. URL Filtering URL filtering technology protects users from web-based threats by providing granular control over user access and interaction with content on the Internet. You can develop a URL filtering policy that limits access to sites based on URL categories, users, and groups. Cortex Data Lake Collects, normalizes, and integrates data from Palo Alto Networks products with public cloud scale. | ||
Palo Alto Networks | Government Cloud Services (GSC-Mod) | Authorized | SaaS | Moderate | 2024-04-12 | SR23031 | Fortreum | Lauren Aloway | laloway@paloaltonetworks.com | State of Arizona | Palo Alto Networks Government Cloud Services (GCS-Mod) includes a variety of cloud-based cybersecurity offerings. As your agency moves forward in its modernization efforts, it needs trusted cybersecurity solutions that will reduce the risk of data breaches while meeting compliance. Develop a comprehensive cloud cybersecurity strategy with solutions that protect workers, data and applications from cyber adversaries and advanced threats. The following products and services make up our offering. Cloud Identity Engine Identity-based security controls are a foundational requirement to achieve Zero Trust. Palo Alto Networks Cloud Identity Engine is an entirely new cloud-based architecture for identity-based security that can consistently authenticate and authorize your users, regardless of location and where user identity stores live—on-premises, in the cloud, or hybrid. As a result, security teams can effortlessly allow all users access to applications and data everywhere and quickly move toward a Zero Trust security posture. Cortex XDR A cloud-based service providing a prevention, detection and response platform that integrates network, endpoint, and cloud data to stop sophisticated attacks. Cortex XDR leverages logs, alerts, and information from Palo Alto Networks and third-party security products. It also enforces security policies on endpoints, preventing malware and data loss. Cortex XDR correlates security alerts and network logs with the endpoint processes that generated the alerts, allowing customers to investigate security alerts, as well as search for and remotely respond to threats. Cortex XSOAR A comprehensive security orchestration, automation, and response (SOAR) platform that unifies case management, automation, real-time collaboration, and threat intelligence management to serve security teams across the incident lifecycle. Cortex XSIAM A cloud-delivered, integrated SOC platform that unifies key functions, including EDR, XDR, SOAR, ASM, UEBA, TIP, and SIEM, consolidating multiple products into a single, integrated platform. XSIAM delivers an intelligent data foundation by integrating telemetry from any source, providing unified security operations across any hybrid IT architecture. Cortex Xpanse An active attack surface management solution that helps your organization discover, understand and respond to unknown risks in all internet-connected systems and services. Xpanse scans the entire internet automatically and continuously, discovering and indexing previously unknown risks, using supervised ML models to continuously map your attack surface and prioritize remediation efforts, while reducing MTTR with the help of built-in automated playbooks. Prisma Cloud A cloud native security platform that provides comprehensive visibility, threat prevention, compliance assurance and data protection consistently across hybrid and multi-cloud environments. Prisma Cloud Compute A cloud-native platform that delivers cloud workload protection. Prisma Cloud Compute provides holistic protection across hosts, containers, and serverless deployments in any cloud, throughout the software lifecycle. Prisma Cloud Compute protects all workloads regardless of their underlying compute technology or the cloud in which they run. In addition, it provides Web Application and API Security (WAAS) for any cloud native architecture. WildFire Government Cloud An analysis and prevention engine for highly evasive zero-day exploits and malware. The cloud-based service employs a unique multi-technique approach combining dynamic and static analysis and innovative machine learning techniques to detect and prevent even the most evasive threats. It is a subscription service that works with the Palo Alto Networks Next Generation Firewalls (including VM-Series and CN-Series), Prisma Access, Prisma Cloud, Cortex XSIAM, and Cortex XDR. Prisma Access A Secure Access Service Edge (SASE) that provides scalable, cloud-delivered networking and security to branch offices and remote users. With Prisma Access, agencies are able to rapidly enable consistent, secure connectivity for remote locations and employees. Prisma SD-WAN Prisma SD-WAN enables branch services such as networking and security to be delivered from the cloud, simplifying WAN management. The controller provides deep application visibility, with Layer 7 intelligence for network policy creation and traffic engineering. It automates operations and problem avoidance using machine learning and data science methodologies. Cloud Management A cloud delivered management solution used by customers to manage Prisma SASE from Palo Alto Networks. Multi-Tenant Service Provider Portal (MSP) The MSP solution provides hierarchical multi-tenant management for customers and partners PRISMA INSIGHTS Prisma Insights provides a comprehensive platform for global visibility and monitoring for the Prisma Access service. It continuously monitors the health and performance of your Prisma Access environment with Insights in the Prisma Access app. ADEM Autonomous Digital Experience Management (ADEM) provides organizations with segment-wise insights, comprehensive visibility, and SASE-native DEM integrated with Prisma SASE, the secure foundation for agile, cloud-enabled organizations. API Gateway The API Gateway provides authorization services for customers and partners to leverage Palo Alto Networks RESTful API Data Loss Prevention Data Security Palo Alto Networks’ Enterprise DLP software-as-a-service system is a network DLP service to prevent Data Loss of sensitive data. The solution helps facilitate an organization’s data protection and compliance efforts in a simplified and cost-effective manner. SAAS API / Inline / SSPM SaaS Security is a solution that helps Security teams meet the challenges of protecting the growing availability of sanctioned and unsanctioned SaaS applications and maintaining compliance consistently in the cloud while stopping threats to sensitive information, users and resources. SaaS Security options include SaaS Security API, SaaS Security Inline, and SaaS Security Posture Management (SSPM). Advanced WildFire An analysis and prevention engine for highly evasive zero-day exploits and malware. The cloud-based service employs a unique multi-technique approach combining dynamic and static analysis and innovative machine learning techniques to detect and prevent even the most evasive threats. APP-ID Cloud Engine - ACE A platform that enables the firewall or Panorama to download App-IDs from the cloud for applications that do not have specific predefined App-IDs from the Palo Alto Networks content releases. Threat Prevention The Palo Alto Networks® Threat Prevention protects and defends your network from commodity threats and advanced persistent threats (APTs). The multi-pronged detection mechanisms include a signature-based (IPS/Command and Control/Antivirus) approach, heuristics-based (bot detection) approach, sandbox-based (WildFire) approach, and Layer 7 protocol analysis-based (App-ID) approach. URL Filtering URL filtering technology protects users from web-based threats by providing granular control over user access and interaction with content on the Internet. You can develop a URL filtering policy that limits access to sites based on URL categories, users, and groups. Cortex Data Lake Collects, normalizes, and integrates data from Palo Alto Networks products with public cloud scale. | ||
Paperless Innovations | Actus | Authorized | SaaS | Moderate | 2023-05-23 | SR23010 | Earthling Security | Michael Tocci | mike@paperless-innovations.com | StateRAMP Approvals Committee | Actus is SaaS based Compliance automation solution for P-Card Programs, including item sourcing, approvals workflows, credit card purchasing, reconciliation, and automated audit. Actus is designed according to 3 pillars: Accountability, Compliance , and Transparency. • Accountability - Actus helps agencies paint a complete and total picture of each expense, eliminating guesswork, human error, and manual data entry tracking. • Compliance - Simplified, structured data is at the heart of compliance automation ensuring adherence to Agency policies and acquisition regulations. The Actus platform streamlines and automates oversight processes while maintaining rich transactional records for instant audit reporting. Artificial Intelligence is used to further the regulatory mission of each agency. Adoption of Actus itself satisfies and supplements Federal paperless mandate compliance as well. • Transparency - Actus utilizes dashboards enabling full visualization of all workflow processes, transactional data and documents on a need to know basis. Audit automation occurs with every download of bank transactions without requiring manual packet creation by the cardholder. Active Audit enables inspection of every detail of each purchase made within a selected time frame—in a unified, streamlined format. P-Card Compliance Automation Features: • Custom Approval Workflows • Financial Data Capture • Full Lifecycle Spend Tracking • Cloud Storage of Reconciliation Packets • Dashboard Visualization of data & documents • Automated Reconciliation Statements • Structured Item Level (Level 3) Data • Merchant Class Code Tracking • Suspicious Pattern & Activity Detection • Alerts for Each Stage of Transaction • Transactional Keyword Search • Bank Statement Transaction Matching • Auto-Matched Transactions • Daily, Weekly, or Monthly Reconciliation • PIV/CAC authentication | ||
Pearson | Evaluation Systems | Authorized | SaaS | Moderate | 2024-08-20 | SR24020 | A-Lign | Kellie Crawford | evaluationsystems@pearson.com | Not Required | Evaluation Systems designs, develops, scores, and reports results for high-stakes PK-12 educator and school administrator certification assessments. The assessments cover both pedagogy and content relevant to a given field and give candidates the opportunity to demonstrate what they know and can do. | ||
Pexip | Pexip Government Cloud | Authorized | SaaS | Moderate | 2023-06-19 | SR22039 | Schellman & Company | stateramp@pexip.com | StateRAMP Approvals Committee | Pexip Government Cloud (PGC) provides a standards-based video teleconferencing (VTC) Software as a Service (SaaS) capability to United States (US) federal, state, and local government customers. The PGC SaaS features two core capabilities: · Microsoft (MS) Qualified Cloud Video Interop (CVI) for MS Teams · Standards-based Virtual Meeting Rooms (VMRs) for customer VTC endpoint devices PGC offers government customers the ability to replace or augment their existing on-premise VTC infrastructure with a subscription-based service model using compliant purpose-built secure communication protocols. | |||
Project Hosts, Inc. | GSS One- Azure | Authorized | PaaS | Moderate | 2021-09-10 | 2022-06-27 | SR21006 | Coalfire Systems | Joshua Krueger | josh.krueger@projecthosts.com | StateRAMP Approvals Committee | The GSS One- Azure is a General Support System (GSS) platform (PaaS) built primarily on Microsoft Azure Government. Project Hosts also deploys customer dedicated subnets on Azure commercial for those customers/ agencies that request this. The GSS is composed of systems and services that manage access control, authentication, auditing, monitoring, scanning, patching, configuration management, malware prevention, intrusion prevention, incident response, backup, and disaster recovery for each Application deployed on the GSS One- Azure. The GSS One- Azure is classified as a hybrid cloud deployment model to enable state and local agencies as well as commercial entities to deploy applications in a secure environment on top of the GSS One- Azure GSS system. There are two main types of customers who use the GSS One- Azure: (i) Independent Software Vendors (ISVs) deploying multitenant SaaS applications and (ii) Federal, state or local agencies and commercial customers deploying dedicated applications just for their agency or organization (not multitenant). For both types of customers, their applications are deployed on customer-dedicated virtual servers (or Azure PaaS services) inside customer-dedicated subnets. Network security group access controls ensure that each customer’s subnet is completely isolated from and has no access to any other customer’s subnet. PaaS security subnets handling functions such as authentication, DMZ, SIEM, etc. are built on Azure Government. Customers have the option to have their dedicated application subnets built on either Azure Government or Azure Commercial. Either way, customer subnets are connected to the PaaS security subnets through V-net peering as described more fully here: https://docs.microsoft.com/en-us/azure/virtual-network/virtual-network-peering-overview . For GSS One- Azure customers, Project Hosts also provides services that are over and above the PaaS offering described in the GSS One- Azure FedRAMP package. Namely, Project Hosts deploys, secures, manages, and provides continuous monitoring for applications that are compatible with GSS One- Azure architecture, authentication, operating system, database, and access requirements. For ISV customers, Project Hosts also creates their SaaS-level FedRAMP package, helps them throughout the agency authorization process, and manages their 3PAO annual assessments. For agency customers, Project Hosts assists them in the creation of their own SSP, manages annual 3PAO scanning and penetration testing of their dedicated applications, and provides a monthly application-level POA&M. Following is a partial list of applications for which Project Hosts is providing these services over and above the GSS One- Azure platform: Accenture Federal (Task management Tool) Blue Prism (Blue Prism) BrightWork (BrightWork SharePoint-based Project Management) Checkmarx (CxSAST Source Code Scanner) Drupal (Drupal CMS) FlowVU (FlowVU Collaboration) Gimmal (Gimmal Records Management) Lexmark (Managed Print Service) Microsoft (Office, Dynamics, Power BI Server, Project Server, SharePoint, SSRS) Sopheon (Accolade Enterprise Innovation Management) UMT360 (SharePoint-based Enterprise Portfolio Management) Veritas (eVault, eDiscovery, Merge1) WordPress (WordPress CMS) Permuta (Defense Ready) Gimmal (Records Management) Invoke (UiPath Orchestrator and RPA) Conga (Contract Lifecycle Management and Conga Approvals) Davra (WebEx Legislate, Internet of Things) Ephesoft (Transact) OM Group Inc (ProjNet) Nintex (K2 Five, Workflow Cloud) WordPress As a Service (WPaaS) C3 AI (C3 AI Suites) MURAL (MURAL for Government) WillCo Tech (CyberSTAR) Kofax (Control Suite, Kofax TotalAgility, Kofax Robotics Process Automation) If an agency would like to use one of these Applications or bring in another GSS One- Azure-compatible Application, Project Hosts will provide application-level artifacts that will help the agency assess the risk of deploying that application in the GSS One- Azure as well as any other documentation or evidence required in order to grant an Authority to Operate (ATO). | |
Proofpoint, Inc. | Proofpoint Targeted Attack Protection | Authorized | SaaS | Moderate | 2022-08-24 | 2022-09-29 | SR22006 | Schellman | Tariq Iqbal | tiqbal@proofpoint.com | StateRAMP Approvals Committee | Proofpoint Targeted Attack Protection (TAP) helps detect, mitigate, and block advanced threat that target people through email. It detects both known and new, never-before-seen attacks that use malicious attachments and URLs to install malware on a device or trick users to share their passwords or other sensitive information. | |
Proofpoint, Inc. | Proofpoint Email and Information Protection Service | Authorized | SaaS | Moderate | 2022-08-24 | 2022-09-29 | SR22005 | Schellman | Tariq Iqbal | tiqbal@proofpoint.com | StateRAMP Approvals Committee | The Proofpoint Email and Information Protection Service is a powerful cloud email security service that integrates threat protection, virus protection, spam detection, message encryption, data loss prevention (DLP), and digital asset protection technologies into an extensible message management platform. The service is designed to fit easily into existing messaging infrastructure, providing efficient performance, accurate message analysis, and a web-based interface for reporting, configuration, and management tasks. | |
Qlik | Qlik Cloud Government | Authorized | SaaS | Moderate | 2023-07-05 | SR23003 | A-Lign | Marie Rainis | marie.rainis@qlik.com | State of Arizona Department of Homeland Security | Qlik Cloud Government is a SaaS platform purpose-built for delivering Qlik technology to U.S. public sector customers within a safe, FedRAMP-compliant cloud environment. Qlik empowers organizations with data and analytics technology that improves decision-making and solves their most challenging problems. Qlik Cloud Government simplifies data and analytics operations across an organization through a single platform that integrates data sources into an analytics environment where users of all levels can build analytics assets, ask questions with AI, and collaborate with others to drive action. | ||
Qualtrics, LLC. | Qualtrics XM Platform | Authorized | SaaS | Moderate | 2023-04-18 | SR22035 | Schellman | Ben West | bwest@qualtrics.com | StateRAMP Approvals Committee | The Qualtrics XM Platform is a web-based application that allows Government agencies to create surveys and then collect, analyze, and store the data produced from those surveys. Government agencies can use the application to collect and analyze citizen, employee, and community feedback to improve services and engagement for both external customers (citizens) and internal customers (public sector employees). The Qualtrics XM Platform enables multiple departments within an agency to collect and analyze survey data within a single enterprise system, allowing all levels of the agency or department to have access to important feedback data. The XM Platform includes an array of services that can be utilized to track, manage, and improve the experience of external and internal customers, such as: • XM Core – Allows agencies to construct surveys, distribute them to participants, and then manage and analyze individual participant responses. Agencies can then create reports that present the results and publish these reports to the web or share the report links with others. • Customer Experience - Allows agencies to study and improve the customer experience by employing Relationship NPS, Transactional NPS, Customer Satisfaction, and Event Feedback programs. • Employee Experience - Allows agencies to measure and manage employee engagement by creating feedback loops for relevant aspects of public sector employment, such as Manager Feedback, Training Feedback, Employee Engagement, and Employee Pulse programs. • Site Intercept – Allows agencies to display a piece of text, graphic, or widget that encourages a visitor to their website to take a survey or redirect to a specific webpage. To implement, the agency administrator places a snippet of Qualtrics’ JavaScript code on the agency’s website. • Actions and Tickets - Allows defining and triggering a workflow when a set of conditions are met, such as creating support tickets or integrating with external systems via web service API. • Data Analytics - Provides ability to perform natural language processing, statistical and predictive analysis of the data collected via the Research Suite. • Reports and Dashboards – Enables agencies to build dashboards that provide visual displays of the data collected from an agency’s surveys combined with other imported data sources. Qualtrics creates a library where each agency can store question templates, graphics, messages, and files to be used in building surveys and sending messages to participants. Agencies can integrate data from other sources, such as their customer relationship management (CRM) tools, and produce and share reports. They can upload a list of contacts as a CSV file or manually enter or edit contacts. Agencies can also view the complete history of interactions that they have had with their contacts via emails or survey responses. The XM Platform allows customers to send surveys, notifications, and other messages via a built-in email mechanism. To enable this, the application provides an outbound mail delivery engine via SMTP. In addition, customers can generate a URL that links to their survey and send the URL out to survey participants via their own email systems. Reports and data can be exported to a variety of formats, including Word, Excel, PDF, and CSV/TSV, etc. The XM Platform provides an Administration tool that allows designated agency admins to create groups and user permissions and assign them to authorized agency users. Permissions can be set up at the agency, division, or organization level. A single sign-on (SSO) capability enables agencies to implement identity federation via LDAP, SAML / Shibboleth, central authentication service (CAS), or OAuth 2.0. Qualtrics also makes available a REST API to allow agencies to automate functions such as connecting Qualtrics surveys with external systems such as a CRM like Salesforce. | Customer Management and Experience Solutions, | |
Rackspace Technology | Rackspace Government Cloud | Authorized | Moderate | 2024-11-20 | SR22022 | Schellman | Abel Sanchez | abel.sanchez@rackspace.com | Rackspace Government Cloud (RGC) is purpose-built to help organizations achieve Assessment & Authorization faster and with cost savings of up to 70%. The platform is designed to support a government agency, systems integrator, or independent software vendor. Rackspace Government Cloud (RGC) wraps VMware and AWS in a secure-by-design management platform to meet the compliance requirements for FedRAMP and DoD Cloud Computing SRG. Customer solutions are deployed and managed in secured enclaves within US Rackspace datacenters and/or AWS East/West and GovCloud. Customers are provided with dedicated application stacks to maintain data security at the necessary levels. All this is backed by a 24x7x365 U.S. only support model that allows Rackspace to provide the highest levels of assurance and security to our government customers. | ||||
Rubrik | Rubrik Security Cloud - Government (RSC-G) | Authorized | SaaS | Moderate | 2023-12-12 | SR23023 | Kratos Defense | Gayle Berkeley | gayle.berkeley@rubrik.com | Rubrik Security Cloud - Government is a data security platform that delivers complete cyber resilience across enterprise, cloud, and SaaS applications. Built with zero trust design and powered by machine learning, Rubrik Security Cloud automates data policy management and enforcement, safeguards sensitive data, delivers data threat analytics and response, and orchestrates rapid cyber and operational recovery by surgically and rapidly restoring impacted apps, files, and objects. For more information please visit http://www.rubrik.com and follow @rubrikInc on X (formerly Twitter) and Rubrik on LinkedIn. | |||
SAP National Security Systems | Cloud Intelligent Enterprise | Authorized | Paas/SaaS | Moderate | 2023-12-05 | SR23001 | Fortreum | Penny Klein | penny.klein@sapns2.com | StateRAMP Approvals Committee | The SAP NS2 StateRAMP Cloud Intelligent Enterprise (CIE) is a secure cloud environment that hosts the following suite of SAP cloud solutions: SAP SuccessFactors, SAP Employee Central Payroll, SAP Analytics Cloud, SAP Business Technology Platform and SAP S/4HANA Cloud, private edition. Within the StateRAMP CIE cloud environment, states and their agencies can safely adopt and deploy SAP cloud solutions within our secured cloud model. SAP NS2 offers customers enhanced security, availability, compliance, and support to help deliver a mission-critical edge. More information can be found on https://www.sapns2.com/ns2-secure-cloud/ | ||
SAS | SAS AI and Analytics for Government | Authorized | SaaS | Moderate | 2024-12-13 | SR24029 | A-Lign | Eric Brown | eric.brown@sas.com | StateRAMP Approvals Committee | SAS Artificial Intelligence and Analytics (AIA) information system is a cloud-based service offering that is managed by SAS Institute Inc. The SAS AIA information system aims to help customers reduce workload and operational cost. It is a Software as a Service (SaaS) cloud option for SAS Software customers and more specifically, government agencies, including State, Local and Federal. The SAS AIA information system infrastructure leverages Microsoft Azure Commercial cloud within United States data centers. SAS provides and manages the platforms and software included in these offerings. | ||
SMX | Cloud Assured Managed Services (CAMS) | Authorized | PaaS | Moderate | 2021-11-08 | 2022-05-20 | SR21022 | Coalfire Systems | Razaq Ahmed | mahmed@smartronix.com | StateRAMP Approvals Committee | The SMX Cloud Assured Managed Services (CAMS) solution gives an organization the ability to leverage the power and scalability of the cloud while reducing the cost and complexity of managing and monitoring cloud solutions in-house. CAMS has been designed to deliver the flexibility customers demand from today’s cloud managed service providers. | |
Snowflake Inc. | Snowflake Data Cloud on AWS | Authorized | SaaS | Moderate | 2024-04-02 | SR22013 | Fortreum | Siddique Chaudhry | Siddique.chaudhry@snowflake.com | StateRAMP Approvals Committee | Snowflake is the only data warehouse built for the cloud, enabling the data-driven enterprise with instant elasticity, secure data sharing and per-second pricing, across multiple clouds. Snowflake combines the power of data warehousing, the flexibility of big data platforms and the elasticity of the cloud at a fraction of the cost of traditional solutions. Find out more at https://www.snowflake.com/. | ||
Snowflake Inc. | Snowflake Data Cloud on Azure Government | Authorized | SaaS | Moderate | 2023-02-21 | SR22015 | Fortreum | Siddique Chaudhry | Siddique.chaudhry@snowflake.com | Snowflake is the only data warehouse built for the cloud, enabling the data-driven enterprise with instant elasticity, secure data sharing and per-second pricing, across multiple clouds. Snowflake combines the power of data warehousing, the flexibility of big data platforms and the elasticity of the cloud at a fraction of the cost of traditional solutions. Find out more at https://www.snowflake.com/. | |||
Snowflake Inc. | Snowflake Data Cloud on AWS GovCloud | Authorized | SaaS | High | 2024-04-02 | SR22016 | Fortreum | Siddique Chaudhry | Siddique.chaudhry@snowflake.com | StateRAMP Approvals Committee | Snowflake is the only data warehouse built for the cloud, enabling the data-driven enterprise with instant elasticity, secure data sharing and per-second pricing, across multiple clouds. Snowflake combines the power of data warehousing, the flexibility of big data platforms and the elasticity of the cloud at a fraction of the cost of traditional solutions. Find out more at https://www.snowflake.com/. | ||
Socure Inc. | ID+ | Authorized | SaaS | Moderate | 2024-01-02 | SR23021 | Kratos Defense | Matt King | matt.king@socure.com | Socure leverages the power of AI / ML to provide digital identity proofing and verification solutions for consumer identity management. Socure’s ID+ analytics platform ingests consumer submitted data, validates the data against authoritative sources, and analyzes every dimension of the digital identity to generate a risk-based assessment of whether someone is who they claim to be online. This includes a comprehensive analysis of name, email, phone, address, date of birth, SSN, IP, device, velocity, network and behavioral intelligence, and more. | |||
Sona Systems LLC | Experiment Management System (Enhanced Security Edition) | Authorized | SaaS | Moderate | 2024-07-19 | SR23066 | Lunarline | Justin Fidler | justin@sona-systems.com | Sona Systems offers a cloud-based solution for universities to manage research participation. | Learning Management System, | ||
Splunk Inc | Splunk Cloud | Authorized | SaaS | Moderate | 2023-05-05 | SR22038 | Schellman | Splunk StateRAMP Team | ssg-StateRAMP@splunk.com | Splunk Cloud Platform delivers the benefits of award-winning Splunk® Enterprise as a cloud-based service. Using Splunk Cloud Platform, you gain the functionality of Splunk Enterprise for collecting, searching, monitoring, reporting, and analyzing all of your real-time and historical machine data using a cloud service that is centrally and uniformly delivered by Splunk to its large number of cloud customers, from Fortune 100 companies to small and medium-size businesses. Splunk manages and updates the Splunk Cloud Platform service uniformly, so all customers of Splunk Cloud Platform receive the most current features and functionality. | |||
Tanium, Inc. | Tanium Cloud for US Government (TC-USG) | Authorized | SaaS | Moderate | 2023-05-05 | SR22019 | Lunarline | Eric Kirscher | stateramp@tanium.com | State of Arizona, Department of Homeland Security | "Tanium Cloud for US Government (TC-USG) delivers an agent-based endpoint management and security platform, managed and delivered as a cloud-hosted SaaS. The Tanium Core Platform and its services are automatically configured and maintained. For more information, please visit https://tanium.com The following TC-USG services are included within authorization boundary and are offered to customers individually or as desired: Tanium Interact, Tanium Asset, Tanium Comply, Tanium Connect, Tanium Deploy, Tanium Discover, Tanium Enforce, Tanium Impact, Tanium Integrity Monitor, Tanium Map, Tanium Patch, Tanium Performance, Tanium Provision, Tanium Reveal, Tanium Risk, Tanium Threat Response, Tanium Trends." From FedRAMP Marketplace. | ||
Tenable | Tenable.io | Authorized | SaaS | Moderate | 2022-02-11 | 2024-04-16 | SR21039 | EmagineIT | InfoSec-Compliance | compliance@tenable.com | Owen Zorge, City of Chandler, Arizona | Tenable.io is a risk-based vulnerability management platform. Built on an open and elastic platform, it continuously tracks and assess known and unknown assets and their vulnerabilities in your environment to provide a risk-based view of your entire attack surface- from IT to cloud and web applications. Powered by Nessus technology, Tenable.io provides the industry's most comprehensive vulnerability coverage with the ability to understand your cyber risk and predict which vulnerabilities you need to remediate first. Its streamlined and intuitive user experience, gives you immediate insight with intuitive dashboards to quickly deliver value and help your team identify, investigate and prioritize vulnerabilities. | |
T-Metrics, Inc. | T-Metrics Cloud Contact Center | Authorized | SaaS | Moderate | 2023-05-23 | SR23009 | A-Lign | Michael Jolly | mjolly@tmetrics.com | StateRAMP Approvals Committee | The T-Metrics Cloud Contact Center is an Omnichannel Contact Center as a Service (CCaaS) solution that offers voice, email, SMS, artificial intelligence, analytics, ACD, call and screen recording, scorecard, and survey to state and local agencies to improve constituent services. The advanced SaaS solution enables agencies to leverage their investments in Unified Communications, Phones, Carrier and SMS Services with its unique design. The architecture offers agencies the flexibility to consume the service however they decide - premises, hybrid, cloud. | ||
Trend Micro | Trend Micro Cloud One for Government | Authorized | SaaS | Moderate | 2024-05-21 | SR23058 | Fortreum | Steven Ryan | steven_ryan@trendmicro.com | StateRAMP Approvals Committee | Trend Micro offers the leading cybersecurity solution to protect endpoints, servers, and cloud workloads. Deploy security across your endpoints and physical, virtual, and multi-cloud environments to gain unified visibility, management, detection and prevention with Trend Micro Cloud One for Government. Native integrated endpoint and server detection and response (EDR/XDR) sensors allow for quicker detection of complex attacks that bypass prevention. This provides an unmatched understanding of the activity data in your environment and a balanced approach to security, as teams can quickly see the story of an attack and respond faster and more confidently. The platform's real-time prevention and detection capabilities (application control, anti-malware, behavioral analysis, machine learning, EDR, intrusion prevention (IPS), firewall, integrity monitoring, and log inspection) are managed via a single lightweight agent deployed on the endpoint, server, or VM being protected. Combined with a rich set of application programming interfaces (APIs), Trend Micro Cloud One for Government allows you to automate security and reduce impact on your teams. Trend Micro Is trusted by 9 out of the top 10 Fortune 500 companies, blocks over 94 billion threats per year, analyzes over 100 TB of threat information per day and processes over 2.5 trillion events per day. We are cyber security experts. | ||
Trend Micro | Trend Micro Vision One for Government | Authorized | SaaS | Moderate | 2024-05-21 | SR23057 | Fortreum | Steven Ryan | steven_ryan@trendmicro.com | StateRAMP Approvals Committee | Trend Micro Vision One for Government is a modern security operations platform that enables organizations to detect, investigate, prioritize, and respond to threats faster. With built-in security analytics and threat intelligence, Trend Micro Vision One correlates data across multiple security layers from native sensors and third-party data sources to help security teams quickly see the full story of an attack and respond faster and more confidently. Trend Micro Vision One serves the EDR use case with our Trend Micro Endpoint Sensor while delivering a solution path to a broader XDR strategy to extend detection and response to additional attack vectors, including servers and cloud workloads. Built for the SOC analyst, CISO, and threat hunter, this platform leverages AI and predictive machine learning to arm defenders with earlier threat detection and automated response options that make a difference. The visibility and efficiency provided by Trend Micro Vision One makes great security teams even better, enabling them to do more with less. Trend Micro is trusted by 9 out of the top 10 Fortune 500 companies, blocks over 94 billion threats per year, analyzes over 100 TB of threat information per day and processes over 2.5 trillion events per day. We are cyber security experts. | ||
Trimble | Trimble Unity Construct Government Edition | Authorized | SaaS | Moderate | 2024-05-28 | SR23005 | Schellman & Company | Jim Beckner III | jim_beckner@trimble.com | Trimble Unity Construct Government Edition, powered by e-Builder, is a cloud-based construction program management solution for capital projects that delivers trusted insight into performance across the entire project lifecycle. Facility owners improve project outcomes by streamlining business processes and centralizing project information. Designed to help facility owners and those who act on their behalf throughout the entire construction lifecycle, Trimble Unity Construct combines capital planning, cost management and controls, process automation, reports and dashboards, scheduling, document management, and resource management in one integrated suite. Developed in 1995, Trimble Unity Construct manages critical project data through the planning, design, procurement, and construction phases. With a focus on collaborative communication, Trimble Unity Construct features solutions that offer various levels of user accessibility, report generation, and a configurable dashboard. | |||
Trustwave Government Solutions | Managed Detection and Response (MDR) and Co-Managed SIEM | Authorized | SaaS | Moderate | 2024-06-27 | SR24001 | Coalfire | John Wynn | jwynn@trustwavegovt.com | StateRAMP Approvals Committee | 24x7x365 monitoring and management of EDR / SIEM / security technologies by U.S. based employees in AWS GovCloud. | ||
Veracode | Veracode Application Security Scanning Platform | Authorized | SaaS | Moderate | 2023-04-18 | SR23004 | Schellman and Company, LLC | Claire Bailey | cbailey@veracode.com | StateRAMP Approvals Committee | Veracode’s unified platform helps Government developers and application security teams assess and improve the security of applications from inception through production. With a combination of automation, process, and speed, Veracode integrates application security into the software lifecycle, effectively eliminating vulnerabilities during the development/deployment chain. This solution is widely used by enterprises to secure web, mobile, legacy, and third-party enterprise applications, with a simpler and more scalable way to help reduce software security risk across software infrastructure. | ||
Wellspring | Sophia Knowledge Management System | Authorized | SaaS | Moderate | 2022-06-30 | 2022-08-29 | SR22004 | Lunarline | Matthew Hamilton | matt.hamilton@wellspring.com | StateRAMP Approvals Committee | Wellspring Knowledge Management System (Sophia) is a Software-as-Service (SaaS) solution designed to manage technology transfer operations and knowledge asset tracking for those working in the area of research and innovation. The product services solutions within intellectual property (patent) management, licensing and contract management, invention and ideas disclosure, along research and development (R&D) portfolios and project management. The data in the system is typically directly entered by users and includes storage of various metadata around invention, patents, projects, contracts, and contacts associated with those records. Users may supplement these with uploaded notes, related files, workflow status, financial information, contract terms and other information that is critical to the tracking of the end users portfolio. Key functional areas of the system are: idea disclosure from researchers and inventors. evaluation of inventions and Intellectual property protection support of patent prosecution and monitoring tracking contracts and technology licensing terms financial management of patent expenses and licensing revenue compliance with contract terms and invention reporting project and portfolio management | |
WingSwept | Case Management & Tracking System (CMTS) | Authorized | SaaS | Moderate | 2023-02-27 | SR22014 | Lunarline | Allison Lehman | allison.lehman@wingswept.com | StateRAMP Approvals Committee | WingSwept has provided case management solutions to investigators at government agencies for more than a decade. WingSwept converted its Case Management & Tracking System (CMTS) into a Commercial Off-The-Shelf (COTS) service offering in 2010. Built with both security and flexibility in mind, CMTS provides for the secure storage, retrieval, and reporting of case management data for investigative offices at all levels of government. The CMTS design is neither static nor monolithic. Intentionally flexible, CMTS provides government agencies with the ability to establish unique naming conventions, tailor agency-specific workflows, and to support a wide range of other user-preferred configurations. An idle-case tracking function also includes both time and activity-based notifications in order to establish and maintain a seamless agency workflow. As an added layer of security, each CMTS customer operates in a secure environment with data separated by customer. Hosted on Amazon Web Services (AWS), CMTS is a web-based, browser-accessible application that requires no device-specific software for implementation. Highly customizable dashboards, combined with specialized labels and entry fields provide investigators with the ability to compile and display comprehensive case metrics in a simplified, user-friendly format. CMTS can display ad-hoc and pre-defined reports in minutes, drastically reducing processing times and increasing staff efficiency. This flexible design allows agencies to tailor workflows in order to match existing processes and to provide for continuity in ongoing investigations. As a result, CMTS may be readily adapted to serve investigative offices of any size. Many of the CMTS customers leverage our optional Online Intake Service (OIS) which allows customers to host or leverage OIS hosted internet facing forms which can collect case intakes to be later securely picked up by the agency CMTS server for potential ingestion as a case. | Case Management, | |
Wiz, Inc. | Wiz Moderate for U.S. Government | Authorized | SaaS | Moderate | 2024-05-21 | SR23072 | Fortreum | Sandra Buonassisi | sandra.buonassisi@wiz.io | StateRAMP Approvals Committee | Wiz Moderate for U.S. Government (Wiz Mod) is an agentless vulnerability scanning tool that uses an application programming interface (API) connector to scan customer environments in AWS GovCloud. Wiz Mod Gov scans various cloud architectures including virtual machines (VMs), containers, serverless, and PaaS solutions. Integrations with the continuous integration/continuous deployment (CI/CD) pipeline allow Wiz Inc. customers to define scanning policies for images and Infrastructure as Code (IaC) prior to deploying into production. Wiz Mod Gov inventories the technologies discovered in the environment to provide insight into all assets, including third-party access to the environment and code libraries detected on workloads. In addition to scanning for vulnerabilities and configuration standards and uses a threat intelligence feed to scan cloud workloads, detect malicious code, and provide information regarding the severity of the threat, and can give insight into all the privileged role assignments in the environment. | ||
Wolters Kluwer | TeamMate+ | Authorized | SaaS | Moderate | 2023-06-22 | SR22037 | Schellman & Company, LLC | Alberto De Benito Aznar | TeamMate-FedRAMP@wolterskluwer.com | StateRAMP Approvals Committee | The TeamMate+ FedRAMP platform is a suite of services that provides tooling and functionality to auditors for management and tracking of the entire auditing process. The product suite includes TeamMate+ Audit, TeamMate+ Controls, and TeamMate+ Public Sector. The TeamMate+ FedRAMP suite allows auditors and audit organizations to define, track, and manage the audit process within their own standards. TeamMate+ FedRAMP leverages tooling and software to integrate with various services and resources across many systems, enabling auditors to achieve a holistic view of the organization. Through use of cloud technology and wide tooling integration, TeamMate+ FedRAMP enables organizations to align processes and goals for better strategic and tactical insights. TeamMate+ FedRAMP's environment utilizes higher standards for security and compliance, this system has very well-defined boundaries and controlled data ingress and egress patterns. | ||
Xerox Corporation | Managed Print Services for US Government | Authorized | SaaS | Moderate | 2023-09-12 | SR23011 | Coalfire | Bruce Talbert | bruce.talbert@xerox.com | StateRAMP Approvals Committee | Xerox Managed Print and Capture Services (MPCS) for US Government is a cloud-based solution developed specifically to help US Federal, State, and Local government agencies manage the print and document capture life cycles within an organization while maximizing productivity, security and reducing waste and risk. The Xerox Managed Print Services (MPS) capability is a management solution for both Xerox and Non-Xerox print/imaging devices such as printers, multi-function devices, and copiers. Managed print services focus on the management of print output devices themselves, related supplies, and service requirements. The solution ensures proactive device management resulting in maximum uptime, utilization/optimization, and robust print and security policy management. Xerox Capture Services provide advanced multichannel capture, digitization, and data transformation to help government agencies achieve digital transformation goals. Digitization is typically backfile and day forward and can include scanning, indexing, and file transfer. Digitization and imaging services can be provided on-site, near-site or off-site via a scanner, a multifunction device or through our Global Capture Platform. Digitization can be combined with data transformation, process automation, and electronic document management solutions to ensure optimal speed and productivity. | ||
Zoom | Zoom for Government | Authorized | SaaS | Moderate | 2022-02-11 | 2022-07-12 | SR21031 | Schellman and Company, LLC | Jennifer Aneke & John Keese | zfgcompliance@zoom.us | Sacramento County, California | The Zoom For Government Platform unifies cloud video conferencing, cloud phone system, messaging, simple online meetings, and a software-defined conference room solution into one easy-to-use platform. The solution offers video, audio, phone, and wireless screen-sharing across Windows, Mac, Linux, Chrome OS, iOS, Android, Blackberry, Zoom Rooms, and H.323/SIP room systems. Zoom Products include: Zoom Cloud Video Conferencing – a cloud-based collaboration service which includes video, audio, content sharing webinars and collaboration. Zoom Phone - a cloud-based phone system with traditional PBX features, integrated PSTN connectivity, enhanced emergency services, and support for calling from mobile apps, desktop apps, and legacy desk phone devices. Zoom Chat - send chat messages in public or private channels organized by projects, teams, or topics with the ability to share files, emojis, screenshots, and more. Zoom Rooms – software-based group video conferencing for conference and huddle rooms that run off-the-shelf hardware including a dedicated MAC or PC, camera, and speaker with an iPad controller. Zoom Room Connector – a gateway allowing H.323 and Session Initiation Protocol (SIP) systems to connect to Zoom meetings. Room Connector is available in both cloud computing and as software (VM) for installation on the customer premise. Zoom Meeting Connector – a software (VM) version of the Zoom Cloud infrastructure intended for installation on the customer premise. Zoom API - provides the ability for developers to easily add Video, Voice and Screen Sharing to your application. Our API is a server side implementation designed around REST. The Zoom API helps manage the pre-meeting experience such as creating, editing and deleting resources like users, meetings and webinars. | |
Zscaler | Zscaler Internet Access - Government (Secure Web Gateway - vTIC) | Authorized | SaaS | Moderate | 2021-09-10 | 2024-04-19 | SR21001 | Schellman and Company, LLC | Hoon Patterson | hpatterson@zscaler.com | State of Arizona Department of Homeland Security | Zscaler Internet Access delivers your security stack as a service from the cloud, eliminating the cost and complexity of traditional secure web gateway approaches. | |
Zscaler | Zscaler Private Access | Authorized | SaaS | Moderate | 2023-05-08 | SR22044 | Schellman and Company, LLC | Bradley Josephs | bjosephs@zscaler.com | State of Arizona Department of Homeland Security | Zscaler Private Access delivers your security stack as a service from the cloud, eliminating the cost and complexity of traditional secure web gateway approaches. | ||
Vexcel | WIC Mosaic | Provisionally Authorized | PaaS | Moderate | SR23059 | Kratos Defense | Usama Jawed | usama.jawed@microsoft.com | A modern solution for the Women, Infants, and Children Program impacting participation, eligibility, and retention. | ||||
Aurigo Software Technologies Inc. | Masterworks Cloud and Aurigo Essentials | Ready | SaaS | Moderate | 2021-10-15 | SR21012 | The Cadence Group | Vivek Siddegowda | vivek.siddegowda@aurigo.com | The Aurigo Masterworks Cloud is an integrated suite of enterprise software products for owners to plan, build, and maintain large capital assets, infrastructure, and facilities. Aurigo Essentials is an all-in-one product for small to mid-size agencies with easy-to-deploy and industry-ready configurations. | |||
Iron Mountain | InSight on AWS GovCloud | Ready | SaaS | Moderate | 2024-01-02 | SR23053 | Coalfire | Arun Natarajan | arun.natarajan@ironmountain.com | The Iron Mountain InSight system is a cloud-based Software-as-a-Service (SaaS) solution that provides customers with a content services platform that leverages Machine Learning (ML) and Artificial Intelligence (AI) to automatically classify, extract, and enrich physical and digital content. The system has a FIPS-199 categorization of Moderate, and the solution is hosted in the Google Cloud Platform (GCP) as well as AWS Gov Cloud (AWS). InSight leverages GCP and AWS services to provide scalability, virtual segmentation, and high availability in the cloud. InSight is being run as a single-tenant product, where each federal/state customer has its own isolated environment for storage and data processing and access to the product through a public-facing web application. The InSight system aligns with the NIST SP 800-145 description of a cloud computing system and has received an ATO for GCP. | Case Management,Cloud Services,Content Collaboration,Document Management,E-Discovery, | ||
Jamf | Jamf Pro | Ready | SaaS | Moderate | 2023-09-05 | SR23016 | Coalfire | Wendy Kong | wendy.kong@jamf.com | Jamf Pro is the flagship product, providing complete Apple mobility management (EMM) solution for information technology professionals. Jamf Pro provides deployment, device management, application management, asset inventory, user self-service, and security services for the enterprise. | |||
Knowledge Services | dotStaff | Ready | SaaS | Moderate | 2021-09-13 | SR21010 | A-Lign | Dave Stenger | daves@knowledgeservices.com | Knowledge Services dotStaff™ is a Software as a Service (SaaS) offering that includes a Vendor Management System and a Survey Management module. | |||
SecurityScorecard | Ratings Cloud Service | Ready | SaaS | Moderate | SR23065 | Schellman & Company | Steve Cobb | steve.cobb@securityscorecard.io | SecurityScorecard Security Ratings monitors the security posture of millions of companies by calculating a risk score derived from publicly available data. Companies are assigned A-F ratings across risk factors including domain name system (DNS) health, internet protocol (IP) reputation, web application security, network security, leaked information, hacker chatter, endpoint security, and patching cadence. This data is provided to customers via the Security Ratings web application. Customers use the Security Ratings web application to review security ratings and detailed security reports. Users access Security Ratings through a standard web browser and leverage identity federation for authentication. Within the application, users search for companies of interest and review security reports developed by SecurityScorecard. These ratings and reports allow customers to evaluate the cybersecurity risk for companies of interest using data-driven, objective, and continuously evolving metrics that provide visibility into information security control weaknesses as well as potential vulnerabilities throughout the supply chain ecosystem. Users can also create "portfolios" to group together companies of interest and easily compare vendors to help make procurement decisions, evaluate acquisition targets, conduct industry benchmarking, and more. Additional capabilities and data points (collected from publicly available data sources) in the Security Ratings web application include: • IP attribution to company domain(s) • Security vulnerability monitoring by company and security factors • Security risk benchmarking and scoring by company and industry • Alerts for changes in risk scores • Executive and detailed company scorecard reports • Workflow for collaboration and remediation with monitored suppliers | ||||
Microsoft | Microsoft Azure | Authorized, Federal JAB | SaaS, PaaS, IaaS | High | 2021-12-15 | 2022-04-25 | SR21024 | Kratos | John Gallagher | jogallag@microsoft.com | State of Arizona, Department of Homeland Security | Microsoft Azure is a cloud platform with more than 200 products and cloud services designed to help deliver solutions across different deployment scenarios – Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS), and Software-as-a-Service (SaaS). Microsoft Azure supports more than 90 compliance standards including FedRAMP High. | |
Microsoft | Microsoft Azure Government | Authorized, Federal JAB | SaaS, PaaS, IaaS | High | 2021-12-15 | 2022-04-25 | SR21023 | Kratos | John Gallagher | jogallag@microsoft.com | State of Arizona, Department of Homeland Security | Microsoft Azure Government is a separate cloud platform to support US federal, state, local, and tribal government agencies. It can support data that’s subject to the CJIS Security Policy and IRS Publication 1075 along with FedRAMP High and other compliance standards. Microsoft Azure Government is delivered through separate datacenters with physical, logical, and network isolation from the commercial cloud and is operated by US persons who have passed fingerprint-based background checks performed by the states. | |
Microsoft | Microsoft Dynamics 365 | Authorized, Federal JAB | SaaS | High | 2021-12-15 | 2022-04-25 | Kratos | John Gallagher | jogallag@microsoft | State of Arizona, Department of Homeland Security | Microsoft Dynamics 365 is the next generation of intelligent business applications that enable organizations to grow, evolve, and transform. These applications enable organizations to quickly deliver new purpose-built applications that work seamlessly together to help manage mission-critical functions. Microsoft Dynamics 365 supports more than 90 compliance standards including FedRAMP High. | ||
Microsoft | Microsoft Dynamics 365 US Government | Authorized, Federal JAB | SaaS | High | 2021-12-15 | 2022-04-25 | Kratos | John Gallagher | jogallag@microsoft | State of Arizona, Department of Homeland Security | Microsoft Dynamics 365 US Government is the next generation of intelligent business applications that enable US federal, state, local, and tribal government organizations to grow, evolve, and transform. It’s delivered through separate datacenters with physical, logical, and network isolation from the commercial cloud, is operated by US persons who have passed fingerprint-based background checks performed by the states, and can support data that’s subject to the CJIS Security Policy and IRS Publication 1075 along with FedRAMP High and other compliance standards. | ||
Zscaler | Zscaler Private Access - Government (Zero Trust Networking - VPN Replacement) | Authorized, Federal JAB | SaaS | High | 2021-09-10 | 2022-03-18 | SR21002 | Schellman and Company, LLC | Vidya Meenakshisundaram | vidya@zscaler.com | State of Arizona Department of Homeland Security | Zscaler Private Access solves the challenges posed by a traditional VPN infrastructure by decoupling your internal assets and applications from the limitations, cost, and complexity of direct IP network connections. |
Progressing Product List
StateRAMP recognizes cloud service offerings in the process of working toward a verified offering.
To have a product listed as in progress, the product must: 1) be enrolled in the StateRAMP Progressing Snapshot Program, or 2) Have engaged with a Third-Party Assessment Organization (3PAO) to conduct an independent audit for Ready or Authorized.
The progressing statuses include:
Security Snapshot
- Enrolled products are enrolled in the Progressing Snapshot Program and working toward their initial Snapshot score.
- Progressing products are enrolled in the Progressing Snapshot Program and have submitted artifacts to receive their Snapshot scores.
Security Product Review (Non-Snapshot)
- Active products are working toward Ready.
- In Process products are working toward Authorized status.
- Pending products are currently being reviewed by the StateRAMP Program Management Office (PMO) and are awaiting a determination for a verified status.
Company | Product Name | Security Status | Service Model | Impact Level | Ready Date | Authorization Date | Package ID | 3PAO | Point Of Contact | Contact Email | Sponsor Names | Service Description |
---|---|---|---|---|---|---|---|---|---|---|---|---|
Aztec Software | Aztec Learning System | Progressing | SaaS | Moderate | Phillip Thompson | pthompson@aztecsoftware.com | Not required | Aztec Learning System combines a customized Learning Management System (LMS) and Courseware to help transform the lives of adult learners. The LMS includes innovative an unique features allowing automatic per student learning customization, linear and non linear learning and coaching. The learning experience is delivered at Desktop like performance using a robust, secure, scale SAAS architecture with configurations that can be matched to the school's unique needs | ||||
Barracuda Networks | Barracuda Cloud Archiving Service (BCAS | Progressing | SaaS | Moderate | Adeeb Mohammed | compliance@barracuda.com | Not Required | The Barracuda Cloud Archiving Service is a Software as a Service (SaaS) solution hosted in the Barracuda Cloud, previously referred to as direct-to-cloud. The Barracuda Cloud Archiving Service is designed for customers that do not want to manage a physical or virtual appliance. | ||||
Active Network | JumpForward | Progressing | SaaS | Moderate | Blake Gladfelter | blake.gladfelter@globalpay.com | Not Required | Active Network is the leading provider of cloud-based activity and participant management solutions serving a wide range of customer groups including community activities, the public sector, non-profits, and sports. Our proprietary technology platforms transform the way organizations manage their activities, facilities, and events by facilitating online and in-person commerce and streamlining other critical management functions, while also driving consumer participation to their events. | ||||
DeliverHealth Solutions, LLC | eScription One | Progressing | SaaS | Moderate | Juliana Inhofer | juliana.inhofer@deliverhealth.com | Not Required | eScription One is a web-based clinical documentation solution that provides secure dictation, transcription, and scribing services leveraging automated speech-to-text, medical transcriptionists and scribes. The product is fully hosted in the Microsoft Azure Cloud, with data transmitted via HTTPS utilizing TLS 1.2, and data at rest encrypted with AES-256. | ||||
CORE Higher Education Group | CORE Technology Suite | Progressing | SaaS | Moderate | Eric Pinault | eric.pinault@corehighered.com | The CORE Technology Suite simplifies every aspect of your experiential or clinical education program with tools that make your complex and time-consuming processes easier. CORE's experiential/clinical management software supports every stage of the student journey for your students, administrators, and preceptors. | |||||
Hyperview Inc | Hyperview | Progressing | SaaS | Moderate | Joyda Bianco | legal@hyperviewhq.com | Not Required | Hyperview is the leading AI-driven, cloud-based data centre infrastructure management (DCIM) platform that empowers enterprises to optimize capacity, reduce power and energy consumption, lower costs, and avoid outages. | ||||
Auto-Graphics, Inc. | SHAREit | Progressing | SaaS | Moderate | Cheryl Slinkard | cls@auto-graphics.com | Not Required | Our library resource sharing system facilitates the inter-connectivity of consortia, providing you the ability to simultaneously interface with multiple ILS and ILL systems. |
||||
Anthology | Anthology Student | Progressing | SaaS | Moderate | Nicole Anderson | nanderson@anthology.com | Not Required | Anthology Student is a cloud-based Student Information System (SIS) that enables institutions to manage the entire academic lifecycle of a student from Acceptance to Graduation, including financial aid, student accounts, career services, and a robust analytics repository for informed decision making. Anthology Student supports traditional, entrepreneurial, and online institutions, by managing the diversity of academic delivery and financial models. Program credentials can include badges, competencies, diplomas, certificates, or degrees. Anthology Student is a convenient and comprehensive platform built on Microsoft Azure. | ||||
Barracuda Networks | Web Application Firewall as a Service (WAFaaS) | Progressing | SaaS | Moderate | Adeeb Mohammed | compliance@barracuda.com | Not Required | Barracuda WAF-as-a-Service provides cloud-delivered, enterprise-grade application security without the administrative overhead of an appliance. With Barracuda WAF-as-a-Service, you can secure your applications within minutes, regardless of where they are hosted. There is nothing to deploy, scale, size, or maintain. Built on Barracuda’s proven security effectiveness, Barracuda WAF-as-a-Service protects against advanced layer 7 attacks such as DDoS, SQL injection, zero-day threats, AJAX and JSON payloads, the OWASP Top Ten, and others. |
||||
Alegeus Technologies, LLC | WealthCare Administration | Progressing | SaaS | Moderate | Jordan Erickson | jordan.erickson@alegeus.com | Not required | The Alegeus WealthCare Administration system (WCA) is the only single system in the industry that houses the administration for all consumer-directed healthcare (CDH) accounts, recordkeeping for health savings accounts (HSAs), and benefits, debit card (debit card) transaction processing enabling not just the stacking of multiple plans but also increased efficiency in end-to-end processes required to fully support multiple account types together. Alegeus offers a stacked or multi-purse debit card solution that enables multiple benefit accounts to be stacked on a single debit card. Each benefit account represents a separate purse on the card. Employers can define the order of reimbursement for account types which have overlapping available services (e.g., HSA and FSA both allow pharmacy swipes). We also provide unique automation capabilities to coordinate activities between HSA and non-HSAs. For example, we provide the ability to configure deductible rules that dynamically update account descriptions and spending eligible when transitioning from a full FSA to a limited purpose FSA with an HSA. |
||||
CommScope | RUCKUS One | Progressing | SaaS | Moderate | Adam Cutts | adam.cutts@commscope.com | Not Required | RUCKUS One is an AI-driven network assurance and business intelligence platform that enables enterprises to easily manage a converged network, make better business decisions, and deliver exceptional user experiences. With flexible subscription and deployment models, RUCKUS One enables you to deploy future-proof networks simply, reliably, securely and at cloud-scale. | ||||
Blue Hill Data Services | Mainframe as a Service | Progressing | PaaS, IaaS | Moderate | Scott Jones | sjones@bluehilldata.com | Not Required | Mainframe hosting, remote systems support, applications support. | ||||
Cybercheck | Cybercheck Case | Progressing | SaaS | Moderate | Jeff Shaw | jeff.shaw@cybercheck.ai | Not Required | Cybercheck Case provides Law Enforcement (LE) with actionable intelligence to help solve some of the most complicated criminal cases. Using AI and machine learning algorithms, Cybercheck provides agencies with qualified investigative leads that can be used for the buildup of the body of evidence to further investigations along the judicial process and provide added probable cause. Leveraging open-source data on the open, deep, & dark web, Cybercheck focuses on placement and interactions of cyber profiles or CyberDNA, associated with criminal incidents and crime scenes. | ||||
Benchmark Analytics | BMS | Progressing | SaaS | Moderate | Andrei Fedorov | andrei.fedorov@benchmarkanalytics.com | Not Required | Benchmark Management System (BMS) is a comprehensive, top-to-bottom software platform – featuring seven analytics-driven, integrated management modules to choose from – designed to capture all of the day-to-day operational data points in one location. There’s no need to buy separate programs such as Use of Force, Internal Affairs and Performance Evaluation. BMS is truly the single-source solution. Scalable and configurable to address the specific requirements, policies, goals and mission of the department. Can be designed to integrate with existing systems to collect all performance and personnel data in one centralized repository. Provides a holistic view of the police force to ensure the integrity and safety of all officers, units and supervisors. | ||||
Follett Higher Education | Willo | Progressing | SaaS | Moderate | Chuck White | cpwhite@follett.com | Not Required | The information system consists of a suite of micro-services designed specifically for the provisioning and access of Digital course materials for the higher education faculty and students. Willo is powered by the AWS Cloud and offers unlimited performance and capacity. With a wide variety of integration options for universities, our products can work together as one cohesive flow or standalone as a partial integration. Our mission and objective is to provide the best possible access to a multitude of Digital Materials in a single integration. Our staff is highly focused. Our products have endured the test of time. Our products are used in thousands of universities throughout the nation. | ||||
Explorance | Blue | Progressing | Saas | Moderate | Matt Dinsmore | mdinsmore@explorance.com | Not required | The Explorance software suite, including Blue, MLY, Metrics that Matter (MTM), and Forms, helps you extract the most important feedback insights to boost your student or employee engagement, increase retention, and reduce turnover. With industry-leading integration with LMS, HRIS, and other platforms, as well as purpose-built AI comment analysis technology, you can fuel significant cultural and organizational growth with better data-driven decision-making. | ||||
Hannon Hill | Cascade CMS Cloud | Progressing | SaaS | Moderate | Bradley Wagner | ramp-programs@hannonhill.com | Not Required | A cloud-based Content Management System designed for the authoring and publishing of web content. | ||||
Edunav Inc. | EduNav Campus Suite | Progressing | SaaS | Moderate | Andrew Brown | andrew@edunav.com | Not Required | EduNav’s powerful, differentiated technology for higher education integrates both supply and demand information in a single platform for institution-wide planning and decision-making. EduNav supports advisors and students by developing education plans in seconds, helps students stay on track, and allows institutions to achieve their retention and completion goals. To manage supply, our technology informs customers with key insights for making course optimization and planning decisions. EduNav has developed academic completion solutions to help colleges and universities graduate more students in less time. EduNav SmartPlan uses patented technologies to automatically deliver education plans for each student, personalized just for them, which update automatically in real-time as the student progresses or as conditions change. EduNav also delivers a suite of solutions based on this technology, including EduNav Insights, which delivers aggregated student plan data to customers to improve their seat forecasting and resource management and EduNav Summit, which identifies all students who have completed or are close to completing degrees or credentials, whether those degrees or credentials are declared or not. The EduNav Campus Suite (or “EduNav”) consists of multiple modules, including SmartPlan, SmartAudit, Insights, and Summit. |
||||
Liaison International LLC | Othot | Progressing | SaaS | Moderate | Eric Chailler | echailler@liaisonedu.com | Not Required | Liaison’s Othot cloud-based predictive analytics platform uses artificial intelligence to deliver insights that help you make informed decisions across the student lifecycle. Through simple interactions, our software identifies who is most likely to enroll and to persist, and where to focus your resources for the greatest positive outcome. You can do more in less time and with fewer resources. Our Othot analytics software delivers made-to-order predictive and prescriptive models with: - Immediate predictions - Explainable AI - Continuous intelligence |
||||
Liaison International LLC | Time2Track | Progressing | SaaS | Moderate | Eric Chailler | echailler@liaisonedu.com | Not Required | An online clinical training management tool to track, verify, and organize experiences. | ||||
Anaplan | Anaplan | Progressing | SaaS | Moderate | Cameron Tinsler | cameron.tinsler@anaplan.com | Not Required | Connected planning platform | ||||
InfoReady Corp | InfoReady Platform | Progressing | SaaS | Moderate | Maurice Collins | maurice@inforeadycorp.com | Not Required | Submission vetting platform | ||||
Agilix Labs | Buzz | Progressing | SaaS | Moderate | Eric Baker | eric.baker@agilix.com | Not Required | The First K-12 Solution that Combines All the Tools You Need to Create, Deliver, and Scale Learning. | ||||
Omnigo Software, LLC | Omnigo Report Exec | Progressing | SaaS | Moderate | Bradley Stine | bradley.stine@omnigo.com | REPORT EXEC is a dispatch and records management suite that ensures the safety of staff, facilities, and visitors. Our end-to-end solution is easily configurable to meet the specific needs of facilities, staff, and visitors. Make More Informed Decisions: Report Exec organizes facility data in an easy-to-search database. Pre-formulated statistical reports, customizable reports, and a live data dashboard provide all the statistical analyses needed to make informed decisions. Streamline Operations: Built-in communication features keep everyone on the same page. Customizable user roles and permissions ensure that everyone can access exactly what they need to effectively perform their duties. Save Time on Data Entry: Report Exec eliminates time spent re-entering information by automatically populating known information. Quick-key codes and drop-down menus reduce the possibility for human error. Justify Budget Requests and Maintain Transparency: Securing a budget depends on demonstrating department impact and responsible allocation of resources. Report Exec records and organizes this information to justify budget requests and maintain accountability. Automate Reporting: Save statistical reporting filters, set an ideal delivery schedule, and reports are delivered automatically. Automatic notifications for specified types of incidents or locations ensure that the right people are always kept in the loop. Ensure Efficient, Accurate Data Collection: The tree dictionary-based system ensures that statistical reporting is more accurate and efficient with data collection that’s understandable and kept consistent throughout the organization. |
|||||
Procore | Procore | Progressing | SaaS | Moderate | Nathan Casey | nathan.casey@procore.com | Not Required | The Procore platform is offered as a multi-tenant, Software as a Service (SaaS), cloud-based solution, and is accessed over a securely encrypted connection via the public internet. Procore is architected with resiliency by design and hosted on Amazon Web Services (AWS) Global Infrastructure and offers native mobile applications for iOS and Android platforms. Procore’s global, customizable platform connects people, systems, data, and partners across the construction lifecycle, enabling an integrated and connected understanding of the business with visibility across activities, financials, and materials. The organization helps construction leaders plan, measure success, continuously improve, and provides unlimited support and extensive industry experience to help their people respond to opportunities and challenges in real time. Procore helps companies dramatically increase project efficiency and accountability by streamlining communications and mobilizing project documentation. The platform provides access to a single source of data, reducing miscommunication, errors, and rework eliminating delays and maintaining history for future projects and dispute resolution, with a real-time, consolidated view of the entire project - so users know if projects are on-time, on-budget, and course correct quickly. This real-time data and accessibility reduce risk, costly delays, and ultimately increases profits. Construction professionals are enabled to create thriving, productive and collaborative teams to meet project needs. Adopting Procore ensures that projects are delivered on time, on budget and safely with both predictable and breakthrough business results. |
||||
Biote Medical LLC | Method | Progressing | SaaS | High | Aaron Salinas | aaron.salinas@biote.com | Not Required | Major software program that Biote provides it's customer giving them one location for inventory, ordering, and tracking of customer purchases, products, and procedures. | ||||
Barracuda Networks | Email Gateway Defense (EGD) | Progressing | SaaS | High | Adeeb Mohammed | compliance@barracuda.com | Not Required | Email Gateway Defense protects both inbound and outbound email against the latest spam, viruses, worms, phishing, denial of service attacks and zero-day threats. Email Gateway Defense is a pass-through service, acting as a filter in front of your hosted email service or servers. | ||||
Surpass Assessment | Surpass Platform | Progressing | Sascha Peter | sascha.peter@surpass.com | Not Required | The Surpass Platform is a professional and market-leading end-to-end assessment platform. Trusted by the world’s most respected awarding organisations, test publishers, institutions, and national government bodies, Surpass allows you to efficiently create and validate tests ready for secure delivery across multiple platforms. Surpass is used for the authoring of items, item banking, test administration, test delivery, and reporting of computer and paper-based tests. It is the first choice for organisations that need a dependable solution for high-stakes formative and summative testing, with the support of a dedicated and experienced customer service team. |
||||||
enChoice Inc. | Citizen Services for Government (CS4Gov) | Progressing | SaaS | Moderate | Dave Parks | dparks@enchoice.com | Not Required | CS4Gov is a set of cloud-hosted solutions that enable citizens and government entities to interact seamlessly with automated capabilities. | ||||
Front Rush | Front Rush Elite & Essentials | Progressing | SaaS | Moderate | Madison Feldkamp | mfeldkamp@frontrush.com | Not Required | Student-Athlete life-cycle management system. | ||||
Educational Computer Systems, Inc. (ECSI) | RecoverySelect, ServicingSelect, TaxSelect, OutSourceSelect, RefundSelect, and TuitionSelect | Progressing | SaaS | Moderate | Blake Gladfelter | blake.gladfelter@globalpay.com | Not Required | ESCI provides software to manage student loan portfolios for U.S.-based higher education institutions, government agencies, and private lenders. ESCI offers platforms for clients to view and access data related to their student loan account portfolios as well as for students and borrowers to view, manage and make payments on their student loan. | ||||
SmarterServices, LLC | SmarterMeasure | Progressing | SaaS | Moderate | Jason Fill | jason@smarterservices.com | Not Required | SmarterMeasure is a web-based assessment that measures non-cognitive attributes, technical skills, and readiness for online and self-regulated learning. Students receive a detailed report of their results with positive reinforcement and helpful resources. | ||||
Xenegrade Corp | XenDirect | Progressing | SaaS | High | Rick Stern | rstern@xenegrade.com | Not Required | A SaaS application for continuing education course, student, and registration management | ||||
Ivy.ai, Inc. | Ivy.ai, Inc. | Progressing | SaaS | Moderate | Neah Bryant | admin@ivy.ai | Not Required | Ivy.ai is a technology company specializing in AI-driven chatbots and customer support solutions designed for automated support, answering common questions, and performing various tasks on digital platforms. The Ivy Quantum is their generative AI chatbot that offers seamless integration with third-party vendors, ensuring personalized interactions by accessing user-specific records. A majority, 95% of Ivy.ai's customers, are universities, with other users including state and local governments, healthcare institutions, and private corporations. | ||||
Imalogix | Imalogix Spark, Imalogix Discover, Imalogix Coach | Progressing | SaaS | High | Jay Seid | jay.seid@imalogix.com | Not Required | The Imalogix platform is a comprehensive SaaS solution that not only ensures compliance with regulatory standards in healthcare imaging but also enhances business processes, workflow efficiency, and analytics, delivering significant time and cost savings for customers. | ||||
Anthology | Anthology Engage and Federation Provider | Progressing | SaaS | Moderate | Nicole Anderson | nanderson@anthology.com | Not Required | Data-empowered innovation that transforms the student experience. Build and foster an unmatched student engagement experience. Meaningfully involve students and strengthen your data-driven insights with an accessible | ||||
AspirEDU | AspirEDU | Progressing | SaaS | Moderate | Don VanDemark | don@aspiredu.com | Not Required | AspirEDU helps schools help more students graduate on schedule. We analyze the data that schools already have. This allows our solutions to identify students that are most at risk of dropping out of or failing courses, and to identify the best practices that instructors use to maximize the performance of their students. Retaining more students is good for schools and even better for the students themselves. | ||||
Automox | Automox | Progressing | SaaS | Moderate | Tom Bowyer | tom.bowyer@automox.com | Not Required | Established in 2015 and originally from Boulder, Colorado, Automox now operates as a fully remote company headquartered in Austin, Texas. Offering a groundbreaking, Autonomous Endpoint Management (AEM) platform, Automox provides a comprehensive array of cloud-based patching, configuration, and remote control services, including third-party software patching, to customers worldwide. The Automox agent manages updates for devices running on Windows, macOS, and Linux while also keeping hundreds of crucial applications up to date, including Chrome, Firefox, Adobe, Zoom, and Slack. Moreover, Automox excels in providing robust configuration management and automation services. All these functionalities can be seamlessly accessed and administered from a unified dashboard, underscoring Automox's commitment to delivering modern, all-inclusive, remote IT solutions. | ||||
UC Innovation | ascend | Progressing | SaaS | Low | Ken Tang | ktang@ucinnovation.com | Not Required | ascend is the most comprehensive, end to end solution for fundraising and constituent engagement, built natively on Salesforce - and continues to push the boundaries of what is possible in the areas of next generation constituent experiences and AI. | ||||
APS Payroll | APS Payroll | Progressing | SaaS | High | Arthur Almazan | aalmazan@apspayroll.com | Not Required | The APS cloud-based HR and payroll platform provides accessibility to key payroll and HR workflows for optimal efficiency and productivity. It’s easy to use for everyone in your workforce, promoting better adoption and usability. | ||||
Barnes and Noble Education | Adoptions & Insights Portal (AIP), First Day Complete (FDC), Direct Digitial Platform (DDP), inSite ECommerce and Advanced Retail Center (ARC) | Progressing | SaaS | Moderate | Rich Davidson | security@bned.com | Not Required | AIP, FDC and DDP provide courseware services to students and faculty on college campuses. inSIte and ARC provide retail and ecommerce management services to college bookstores | ||||
Barracuda Networks | Impersonation Protection / Incident Response | Progressing | SaaS | Moderate | Adeeb Mohammed | compliance@barracuda.com | Not Required | IP, automatically detect and prevent impersonation, business email compromise, and other targeted attacks. Barracuda's AI engine learns your organization's unique communication patterns and leverages these patterns to identify anomalies and prevent social-engineering attacks in real time. IR, stop phishing attacks used to harvest credentials for account takeover. Our AI detects anomalous email behavior and alerts IT, then finds and removes all fraud emails sent from compromised accounts. Remediate threats quickly and efficiently, by automating investigative workflows and enabling direct removal of malicious emails. Take advantage of fully-automated, post-delivery incident response and threat-hunting capabilities. |
||||
Liaison International LLC | EMP | Progressing | SaaS | Moderate | Eric Chailler | echailler@liaisonedu.com | Not Required | Schools worldwide are effortlessly creating automated inquiry response and multi-touch marketing campaigns proven to engage prospects using our unique combination of Enrollment Marketing software and Admission Services for Higher Ed. You can too. Liaison’s Marketing Services make it easy. Our powerful Enrollment Marketing software, built exclusively for higher education, allows you to create, manage, and analyze omnichannel marketing campaigns that are: - Immediate - Relevant - Automated - Trackable |
||||
RAMPxchange | RAMPxchange | Enrolled | SaaS | Moderate | Kyle McGrath | kylem@rampxchange.com | Not Required | Online marketplace for buyers to procure cybersecurity products and/or services from a pool of verified providers. | ||||
Motorola Solutions | ActiveEye | Progressing | SaaS | Moderate | ActiveEye Compliance Team | activeeyecompliance@motorolasolutions.com | Not Required | ActiveEye Managed Detection and Response (MDR) leverages our advanced ActiveEye security platform and experienced 24x7x365 Security Operations Center analysts to detect and respond to cyber threats. The ActiveEye platform ingests data from connected network elements, analyzes it and sends relevant data and insights to cybersecurity personnel. Analytics and filtering help to differentiate between malicious and routine traffic, making it simpler to focus on actual threats. Log analytics, network detection, endpoint detection and response (EDR), DNS detection, and vulnerability detection are available threat detection modules in the ActiveEye platform. The ActiveEye platform collects and manages security data, optimizing threat detection and increasing focus on the most critical alerts that require quick responses. Built-in analytics capabilities examine multiple real-time threat intelligence feeds, reference past events and follow defined playbooks to automate most analyst actions. Analytics also rank manual investigations, prioritizing those most likely to require remediation. |
||||
MCCi LLC and affiliates | JustFOIA | Progressing | SaaS | Moderate | Shawn Hermann | shawn@mccinnovations.com | Not Required | JustFOIA is a GovTech company providing the easiest-to-use records request software to agencies nationwide. JustFOIA manages every step of the process from intake to delivery, saving valuable time through automating repetitive tasks, reminders, and communication with requesters and responders | ||||
Compansol | BOT - Blumen Online for TRIO | Progressing | SaaS | Moderate | Gunjan Seth | gunjan@compansol.com | Not Required | BOT software is used by TRIO programs (Title IV Federal Program) for student data management. It helps them prepare the APR (Annual Performance Report) as per Department of Education guidelines. It has several mass communication tools like bulk email, bulk text. etc. for TRIO programs to stay in touch with student participants. BOT has over 200 reports, labels, graphs for tracking and data analysis purposes. | ||||
Cerenade | eIMMIGRATION/eCMS | Progressing | SaaS | High | Freddy Shamoon | freddy@cerenade.com | Not Required | eIMMIGRATION & eCMS are case and practice management software used by immigration and other legal professionals. | ||||
Sophos | Sophos Intercept X | Pending | SaaS | Moderate | Fortreum | Minh Tran | minh.tran@sophos.com | Texas A&M | Sophos Intercept X is the world’s best endpoint protection. It stops the latest cybersecurity threats with a combination of deep learning AI, anti-ransomware capabilities, exploit prevention and other techniques. | |||
Phired Up | CampusDirector | Progressing | SaaS | Chris Buck | chris@phiredup.com | Not Required | CampusDirector serves a recruitment registration and management software for college fraternity and sorority communities. | |||||
Schilling Consulting LLC | OASIS | Progressing | SaaS | Moderate | Paul Schilling | paul@schillingconsulting.com | Not Required | Custom software and support for medical and other post graduate schools. | ||||
International Vending Management | SmartHub, SmartCenter, SmartStation, SmartSync, Smartlocker, SmartVault | Progressing | SaaS | Low | William Calderon | wcalderon@ivminc.com | Not Required | Automated vending solution with proprietary web/app reporting. | ||||
Flock Safety | FlockOS | Progressing | SaaS | Moderate | Robert Otten | robert.otten@flocksafety.com | Not Required | Integrated real-time intelligence platform | ||||
Fortinet | FortiCare Support System | Progressing | SaaS | Moderate | Bryan Schneider | bschneider@fortinet.com | Not Required | FortiCare Support System is a CRM platform that enbales Fortinet to provide customer technical support to its customers and manage their account users, assets, product entitlements and renewal of their services and subscriptions. | ||||
CrowdStrike, Inc. | CrowdStrike Falcon Platform for Government | In Process | SaaS | Moderate | Schellman & Company | Wasim Rahman | wasim.rahman@crowdstrike.com | StateRAMP Approvals Committee | The CrowdStrike Falcon Platform is a comprehensive cloud-native cybersecurity platform designed to provide a wide range of security functions to protect organizations from cyber threats. 2:37 The primary purpose of the CrowdStrike Falcon Platform is to provide organizations with a comprehensive cybersecurity solution that encompasses the following system functions: *Endpoint Security - Advanced endpoint security capabilities to protect laptops, desktops, servers, and virtual machines from various cyber threats. *Threat Intelligence - Cloud-based intelligence engine to collect and analyze threat data from millions of endpoints worldwide. *Managed Security - Managed security services with a team of security experts actively monitoring and responding to security events. *Cloud Security - Cloud security capabilities to protect organizations' cloud environments. *Security and IT Operations - Integration of security and IT operations for a unified view of security posture. *Identity Protection - Identity protection capabilities to safeguard user identities and prevent unauthorized access. *Next-Gen SIEM - Logging and analysis capabilities to collect, correlate, and analyze security events and logs. |
|||
Logikco LLC | SDDS (Secured Document Delivery System) | Progressing | SaaS | High | Sara Wilkinson | sarawilkinson@logikco.com | Not Required | SDDS is a web-based document delivery system that allows customers to view, download, or print findings from the Colorado Bureau of Investigation (CBI) and/or Federal Bureau of Investigation (FBI) based on criminal or civil fingerprint submissions. It interfaces with CBI's Automated Biometric Identification Systems for efficient information retrieval. SDDS also provides a secure interface with the Colorado Crime Information Center (CCIC), enabling single sign-on access for law enforcement agency users with CCIC credentials. The Document Center module within SDDS allows CBI and account users to exchange documents in various formats, promoting collaboration and efficient information processing. This centralized document location ensures real-time communication and data sharing for all SDDS users. |
||||
STERIS Corporation | SPM | Progressing | SaaS | Low | Nathan Becker | nathan_becker@steris.com | Not Required | Sterile Processing Management software for hospitals | ||||
Anthology Inc. | Anthology Encompass | Progressing | SaaS | Moderate | Nicole Anderson | nanderson@anthology.com | Not Required | Encourage your alumni and supporters to do more than just engage. By combining analytics with leading engagement tools, you benefit from a seamless constituent experience to further build involvement and support. | ||||
Automatic Payroll Systems, Inc. | APS OnLine | Progressing | SaaS | High | Josh Johnson | jjohnson@apspayroll.com | Not Required | APS OnLine is a all-in-One Payroll and HR Platform. The APS cloud-based HR and payroll platform provides accessibility to key payroll and HR workflows for optimal efficiency and productivity. It’s easy to use for everyone in your workforce, promoting better adoption and usability. | ||||
Accela Inc. | Civic Platform | Progressing | SaaS | Moderate | Dale Wilhelm | dwilhelm@accela.com | Not Required | Accela Inc. is a software development and engineering company that designs and maintains a cloud-based, software-as-a-service (SaaS) platform of services utilized by government agencies to improve productivity, efficiency, and civic engagement. The Company is a provider of civic engagement solutions for government. The Accela Civic Platform includes application programming interfaces (APIs) and mobile applications and is designed to enable and improve core processes for city, county, state, and federal governments. The Company’s solutions uniquely address the diverse needs of agencies, citizens, and businesses by enhancing workflow and making publicly available information more accessible. | ||||
Tophatmonocle | Top Hat | Progressing | SaaS | Moderate | stateramp@tophatmonocle.com | Not Required | Top Hat is an end-to-end teaching platform that empowers educators to increase student engagement and build comprehension in and out of the classroom. | |||||
Media Match Inc | bloop | Progressing | SaaS | Moderate | Stuart McLellan | stu@bloop-web.com | Not Required | SaaS platform used to track certification, training, equipment service, of divers and/or boat operators. Dive logs and time under way logs. Alerts users to upcoming certification/training expirations. | ||||
Meazure Learning | ProctorU Proctoring Platform, Examity V4/V5 platforms | Progressing | SaaS | Moderate | Mark Seligman | mseligman@measurelearning.com | Not Required | Remote Online Examination proctoring | ||||
Liaison International LLC | TargetX | Progressing | SaaS | Moderate | Eric Chailler | echailler@liaisonedu.com | Not Required | More than 400 campuses worldwide use TargetX to recruit a larger class of best-fit students, improve student success and increase completion rates. You can too. Our suite of solutions builds on the Salesforce platform to deliver an end-to-end system for: - Marketing Automation - Application & Decision Management - Improved Recruitment and Retention Outcomes |
||||
Follett Higher Education | Follett Discover Information System (FDIS) | Pending | SaaS | Moderate | Kompleye | Zayed Chowdhury | zchowdhury@follett.com | The Information system consists of a suite of micro-services designed specifically for the provisioning of Digital and Print course materials for the higher education faculty and students. The suite of products including Follett Discover Information System (FDIS) are powered by the AWS Cloud and offer unlimited performance and capacity. With a wide variety of integration options for universities, our products can work together as one cohesive flow or standalone as a partial integration. Our mission and objective is to provide the best possible access to a multitude of Digital and Print Materials in a single integration. Our staff is highly focused. Our products have endured the test of time. Our products are used in thousands of universities throughout the nation. | ||||
CommScope | Cloudpath | Progressing | SaaS | Moderate | Adam Cutts | adam.cutts@commscope.com | Not Required | RUCKUS® Cloudpath® Enrollment System is a cloud service that delivers secure network access for any user, and any device, on any network. Cloudpath secures every connection with WPA2/WPA3-Enterprise, protecting data in transit between the device and the access point with powerful encryption. Cloudpath provides visibility and control over which devices are on the network, and can define and manage policies so every user sees only the network resources they should see. The Cloudpath service checks the security posture of devices during onboarding to ensure they comply with organizational security policies. The system redirects users with noncompliant devices to remediate them before granting access. It associates every device with a user, and access can easily be revoked at any time—for example, when a BYOD user leaves the organization. The service supports any Wi-Fi enabled device, including headless and IoT devices. | ||||
Propelus | CE Broker | Progressing | SaaS | Robert McGuinness | rob@cebroker.com | Not Required | CE Broker is the official CE tracking system for more millions of licensees nationwide. We bring together regulating entities, licensed professionals, educational providers, and employers to ease the friction of compliance. |
|||||
CureMD | CureMD10g | Progressing | SaaS | Moderate | Arslan Razzaq | arslan.razzaq@curemd.com | Not Required | Practice Management and Electronic Health Records | ||||
Barracuda Networks | Cloud to Cloud Backup (CCB) | Progressing | SaaS | Moderate | Adeeb Mohammed | compliance@barracuda.com | Not Required | Barracuda Cloud-to-Cloud Backup for Microsoft 365 protects Exchange Online, OneDrive for Business, SharePoint, and Teams data by backing up directly to Barracuda Cloud Storage | ||||
Customer Expressions Corp | Case IQ | Enrolled | SaaS | Moderate | Kris Hall | khall@caseiq.com | Not Required | Software to streamline workplace investigations and risk mitigation for today’s organizations through omni-channel case intake, configurable workflows, smart automations, and meaningful analytics. | ||||
Scarlet Computing Solutions, LLC | STARS Platform (SRAR/SSAR, STARSApply) | Progressing | SaaS | Daniel Camputaro | camputaro@scarletcs.com | Not Required | The Self-reported Testing and Academic Record System (STARS) aka. SRAR/SSAR allows students to self-report their high school and college coursework, grades, and exam information to colleges and universities. | |||||
Permanent Software Group Canada Ltd. dba RezLife Software | eRezLife | Progressing | SaaS | Moderate | Andrew Bender | andrew.bender@erezlife.com | Not Required | A cloud-based system to manage operations for Residence Life departments at colleges and universities. | ||||
ZibaSec | PhishTACO | Pending | SaaS | Moderate | Coalfire Systems | Julie Davila | j@zibasec.io | ZibaSec PhishTACO is a cloud-based SaaS solution that enables organizations of all sizes to accurately assess their risk levels using sophisticated email phishing campaigns. | ||||
Transact Campus, Inc | Transact | In Process | SaaS | Moderate | Lazarus Alliance | David Shaw | david.shaw@transactcampus.com | Transact Campus is an integrated, cloud-native, and mobile-first ecosystem that brings together Payments, Campus ID, Commerce, and third-party software with standards-based, scalable technologies and common data integrations. | ||||
Florence Healthcare | Site Enablement Platform | Progressing | SaaS | Moderate | Gracie Russell | gracie.russell@florencehc.com | Not Required | eBinders™ is a 21 CFR Part 11 compliant SaaS platform that enables digital workflows for the customer to create, access, and track essential trial documents via electronic investigator site files (eISF), participant binders, and eLogs. Within eBinders™, the customer can also provide controlled, timed access to other users—such as auditors, monitors, or sponsors—to enable remote start-up, monitoring, and source data review. The customer can save time and costs by using eBinders™, including decreasing study start-up timelines by as much as 40% one NCI Cancer Center reduced average time to sign from 2 weeks to 4 hours. Throughout your use of eBinders™ to collect signatures, update eLogs, and upload patient health information (PHI) and source data, Florence prioritizes regulatory compliance. eBinders™ is compliant and compatible with the technical regulatory body requirements for electronic records and electronic signatures as well as the industry standards for GxP. eBinders™ is currently used and compliant across 50+ countries regulatory authorities and publications where Florence complies include FDA 21 CFR 11, HIPAA, GDPR, ICH E6(R2) GCP, and Annex 11. |
||||
GMetrix, LLC | GMetrix | Progressing | SaaS | Moderate | Quaid Atkinson | quaid@gmetrix.com | Not Required | GMetrix is a custom LMS that delivers exam prep products such as courseware and practice exams, primarily focused on entry level CTE certifications. | ||||
NinjaOne LLC | NinjaOne | Pending | SaaS | Moderate | SR24035 | Schellman | King Quaidoo | king.quaidoo@ninjaone.com | NinjaOne is a remote monitoring and management (RMM) platform delivered as a software as a service offering using a multi-tenant public cloud computing environment. It includes facilities for patch management, software deployment, endpoint health and performance monitoring, as well as scripting and automation. It is available to the public, federal, state, local, and tribal governments, as well as research institutions, federal contractors, government contractors. | |||
Standard Printing Company, Inc. | Secure printing and mailing services | Progressing | SaaS | Moderate | Michael Trejo | michaelt@spcio.com | Not Required | Secure printing and mailing services for utility bills, loan statements, jury summons, tax documents, and other B2B billing | ||||
American Telephysicians | SmartClinix | Progressing | SaaS | Moderate | Faisal Saleem | faisal.saleem@amercantelephysicians.com | Not Required | Healthcare needs a unified solution that meets requirements and makes care delivery truly digital. The New and Improved SmartClinix system is a complete virtual solution that can speed up healthcare progress on all fronts. The recently upgraded SmartClinix is meant for Physicians, Hospitals, Facilities, International Practices, and other areas where efficient care delivery is required. | ||||
GL Solutions | GL Suite | In Process | SaaS | Moderate | Linford & Co | Eric Staley | staley@glsolutions.com | GL Suite is a full-service, cloud-based SaaS licensing and credentialing regulatory solution used currently in dozens of states. GL Suite was developed 25 years ago by regulatory officials to “Help Governments run, grow and adapt” as the mission statement of GL Solutions states. Modernization and optimization of government agencies increases efficiency and brings trust to the regulatory agencies. | ||||
Anthology | Blackboard Core and Premium Solutions (includes Blackboard, Outcomes, Evaluate, Core Data and Milestone) | Progressing | SaaS | Moderate | Nicole Anderson | nanderson@anthology.com | Not Required | Blackboard solution offers agencies next-generation online, social and mobile tools that create a continuous learning environment, built around peer-to-peer interaction, content and discussions. Outcomes enables institutions to effectively manage their outcomes assessment processes at their institution. The application helps standardize the process of outcome assessment which in turn makes it easier to compare the achievement levels across the institution. Evaluate streamlines the course evaluation process so that perceptions of a student’s learning experience can be easily used to gain a deeper understanding of where course adjustments can be made. It supplies analysis with recommendations for development that considers both instructors’ goals and students’ self-rated progress. Milestone Enable learners to certify and showcase their skills and accomplishments. Support them by aligning paths and outcomes as they transition into the next stage of their educational or professional journey. | ||||
Liaison International LLC | WebAdMIT | Progressing | SaaS | Moderate | Eric Chailler | echailler@liaisonedu.com | Not Required | Liaison’s WebAdMIT is an admissions management solution that helps users work more strategically to recruit, evaluate, admit, and enroll best-fit students for institution’s programs. With WebAdMIT, users can analyze and report on applicant data, communicate with applicants, and collaborate with evaluators to build classes of best-fit students. WebAdMIT streamlines administrative tasks for everyone involved in the admissions process. With WebAdMIT, users can: • Establish work groups and manage user rights and privileges • Assign admissions workflow components and track progress • Schedule, manage and score interviews • Manage processes by program and across institutions WebAdMIT facilitates increased collaboration and improved operational efficiencies, allowing users to focus on strategic priorities. |
||||
Liaison International LLC | SlideRoom | Progressing | SaaS | Moderate | Eric Chailler | echailler@liaisonedu.com | Not Required | SlideRoom is a comprehensive system designed to accept and review application forms, references, portfolios, and payments in one secure location. | ||||
LEARFIELD | Sidearm | Progressing | SaaS | Moderate | Govind Shankar | govind.shankar@learfield.com | Not Required | SIDEARM provides the technology platform that powers the official websites, mobile apps, statistical integration, live audio and video streaming, and e-commerce platforms of more than 1,600 collegiate athletic partners across the nation | ||||
WizeHive | Zengine/NextZen | Progressing | SaaS | Moderate | Noah Bliss | noah.bliss@wizehive.com | Not Required | Zengine/NextZen is a flexible SaaS web application designed to help organizations manage and distribute grants and scholarships. It includes a submission portal for applicants, user management of the current customer programs, and strong reporting statistics to help maximize impact. | ||||
Binti, Inc. | Binti | Progressing | SaaS | Moderate | Brittany Wilbert | brittany@binti.com | Not required | Binti builds modern software with the goal of helping every child have a family. 400,000 children are currently in foster care in the US and millions are in orphanages around the world. 30% of the US’s homeless population and 25% of prison inmates experienced foster care as youth. It’s clear that children who don’t have families don’t have a fair chance at life. Binti wants to change that. By streamlining the foster/adoption process with user-friendly tools, we are working to address the nationwide shortage of foster families. | ||||
Butterfly Network, Inc. | Butterfly iQ / Butterfly iQ+ / iQ3 Ultrasound Probe System (aka: Butterfly Ultrasound Probe System) | Progressing | SaaS | Moderate | Mike Tiemeyer | mtiemeyer@butterflynetinc.com | Not Required | Butterfly Network’s Inc.’s Butterfly Ultrasound Probe System enables universal access to superior medical imaging, making high quality ultrasound easy-to-use, globally accessible, and intelligently connected. Butterfly iQ™ (aka Butterfly Ultrasound Probe System) is the only ultrasound transducer that can perform “whole-body imaging” with a single handheld probe using semiconductor technology. Connected to a mobile phone or tablet, it is powered by Butterfly’s proprietary Ultrasound-on-Chip™ technology and harnesses the advantages of AI to deliver advanced imaging that is easy-to-use and improves patient outcomes. |
||||
ByWater Solutions | Koha/Libki/Metabase/Aspen | Progressing | SaaS | Moderate | Evelyn Hartline | security@bywatersolutions.com | Not Required | Suite of Physical library software, Open Source | ||||
CommScope | RUCKUS AI | Progressing | SaaS | Moderate | Adam Cutts | adam.cutts@commscope.com | Not Required | RUCKUS AI delivers robust service assurance for IT and business intelligence to line-of-business stakeholders to help you get the most from your enterprise network. Powered by artificial intelligence (AI) and machine learning (ML) algorithms, this cloud service simplifies life by automatically classifying service incidents by severity—tracing root causes and recommending steps for remediation. | ||||
Poll Everywhere, Inc. | The Poll Everywhere services | Progressing | SaaS | Moderate | Alec Nunez | alec@polleverywhere.com | Not Required | Poll Everywhere is a cloud based, audience response system provided as SaaS. It turns any presentation into a two-way conversation - directly in your PowerPoint, Keynote, or Google Slide deck. Participants respond to questions live, using mobile phones or any web-enabled device, and the results appear instantly in beautiful, animated displays. Poll Everywhere engages everyone at conferences, town halls, training sessions, marketing and outreach events, and everyday meetings. | ||||
Sage Publishing | Vantage | Progressing | PaaS | Moderate | Liz Roden Hall | liz.rodenhall@sagepub.com | Not Required | Courseware platform with LTI 1.3 integration capability serving US higher education instructors and students. | ||||
Elevare Group | BridgeInteract Patient Engagement Platform | Progressing | SaaS | High | John Deutsch | support@elevaregroup.com | Not Required | Bridge is a leader in mobile-first patient engagement SaaS solutions for clinical, operational, and financial success. The company’s award-winning, white-label BridgeInteract platform provides a unified bundle of tools to automate the care journey and streamline the patient experience. | ||||
FeedbackFruits BV | FeedbackFruits Teaching & Learning Solution | Progressing | SaaS | High | Bas Hintemann | bas@feedbackfruits.com | Not Required | Boost student engagement and collaboration with an all-in-one teaching & learning solution in your LMS. | ||||
Fifth Asset, Inc. | DebtBook | Progressing | SaaS | Low | Jason Fischer | jason.fischer@debtbook.com | Not Required | DebtBook is a cloud-based debt, lease, and subscription management solution. | ||||
symplr software LLC | symplr Payer, Provider | Progressing | SaaS | Moderate | Vijay Jayaraman | vjayaraman@symplr.com | Not Required | symplr Payer provides a single source of truth for provider data that is consistently reconciled and validated against primary sources. It improves data quality, access, and transparency. Further, it eliminates duplicate requests for information, reducing provider frustration. Using symplr Payer as the enterprise-wide hub for provider data, payers can feed timely, accurate information to other downstream systems. | ||||
Dorger Software Architects, Inc. | Valence CRM | Progressing | SaaS | Trevor Ward | trevor@dorgersoft.com | Not Required | Valence CRM is a highly configurable, cloud-based case management solution designed to streamline complex workflows for government agencies and public organizations. With robust features such as document management, automated business rules, role-based security, and customizable dashboards, Valence CRM allows organizations to efficiently manage regulatory compliance, case tracking, licensing, and revenue processes. | |||||
TMA Systems Inc. | WebTMA | Progressing | SaaS | Moderate | Jean Hernandez | jean.hernandez@tmasystems.com | Not required | asset & facility management platform | ||||
TeamDynamix | TeamDynamix | Progressing | SaaS | Moderate | Luke Jones | luke.jones@teamdynamix.com | Not Required | ITSM/ESM and Project Portfolio Management with enterprise integration and automation (iPaaS). | ||||
Integration Appliance, Inc. | Intapp DealCloud | Progressing | SaaS | Moderate | Edward Hay | edward.hay@intapp.com | Not Required | Intapp DealCloud is a data-powered platform that delivers vertical-specific solutions that enable professional and financial services firms to harness the intellectual capital of their people and processes within one unified system. By centralizing firm-wide intelligence, DealCloud empowers professionals with the ability to easily access and digest firm-wide insights related to relationship intelligence, business development initiatives, pipeline progress, and other firm-related activity to promote quick and effective decision making. o Customer Relationship Management (CRM) provides sector and practice 360-degree intelligence to help partners develop key-client plans, enables business development teams to identify new opportunities, and empowers marketers to deliver events and campaigns with impact. o Deal & Relationship Management provides zero-entry capture of e-mail signature data to create a single global contact database, generate relationship-strength metrics, and encourage relationship-building behaviours o DataCortex helps dealmakers manage proprietary and third-party data in one unified platform and empowers them to transform that data into institutional knowledge. The solution is fully integrated into the DealCloud platform, so firms can easily run complex reports, analyse industry trends, and evaluate potential synergies in the same hub where deals are originated, and relationships are managed. o Experience management helps capture and leverage a firm’s collective experience, using an AI-based approach that sources current, comprehensive, and granular data while minimizing manual entry bringing a firm’s experience to the forefront helping to enhance competitive win rates, work allocation, knowledge management, and talent development. |
||||
IXL | IXL | Progressing | SaaS | Moderate | Zalak Shah | zshah@ixl.com | Not Required | IXL is the end-to-end learning solution to drive positive student learning outcomes. Research-based and research-proven, IXL is the essential solution that supports teachers with up-to-date assessment of where students are, insight on where they need help, and actionable next steps to differentiate instruction and accelerate their learning. IXL supports every student to learn independently, at their working level, and at their own pace. With personalized guidance and insightful analytics, students are empowered to take ownership of their learning, making informed choices about what to learn next and tracking their progress towards mastery. IXL is built on five key components: comprehensive PK-12 curriculum and personalized guidance instructional resources and classroom engagement tools first-of-its-kind assessment suite actionable district-wide analytics and district partnership, professional learning and implementation services. Integrated into a single platform, each component is designed to work together seamlessly to give educators the tools and insights they need to maximize learning for every student. |
||||
Backblaze, Inc | Backblaze B2 Cloud Storage and Computer Backup | Progressing | IaaS | Moderate | Mark Potter | mpotter@backblaze.com | Not Required | Backblaze makes it astonishingly easy to store, use, and protect data. Backblaze B2 Cloud Storage provides always-hot, S3-compatible, specialized object storage for backup and archive, application storage, and media workflows. Backblaze Computer Backup provides unlimited, automated Mac and PC backup. | ||||
JB International | Trilby Suite | Progressing | PaaS | High | Gillian Thiebe | gillian@jb.international | Not Required | Trilby Suite is a case management immigration solution for higher education, hospital groups, and any other institution that would host international scholars, employees, and students. | ||||
Xinspire, LLC | Xinspire Mentoring Platform | Progressing | SaaS | Moderate | Xuan Wu | xuanwu+stateramp@xinspire.com | Not Required | Mentoring software as a service | ||||
ICM Document Solutions | Progressive Snapshot | Progressing | SaaS | Moderate | Jad Greer | greerj@icmconv.com | Not Required | Progressive Snapshot | ||||
Counter Tools | Point Of Sale Toolkit (POST) | Enrolled | SaaS | Moderate | Ernie Hudson | ernie@countertools.org | Not Required | SaaS application used to collect retail sales data for various commodities that impact public health (tobacco, alcohol, cannabis). | ||||
MyDocument.ai | AI Chatbot | Progressing | SaaS | Rodrigo Burberg | info@mydocument.ai | Not Required | AI chatbot with live chat integration, SMS notifications system, and issue reporting. | |||||
Med+Proctor, LLC | Med+Proctor | Progressing | SaaS | Moderate | Eric Henson | eric.henson@medproctor.com | Not Required | Collection of higher education student immunization records for processing, verification, and reporting | ||||
NetDocuments Software Inc. | WorldOx | Progressing | SaaS | Moderate | David Hansen | david.hansen@netdocuments.com | Not Required | A Cloud hosted Document Management Service that entities subscribe to so the entity users can use the Service to securely store and manage their files. | ||||
Omnigo Software, LLC | Omnigo TraQ7 | Progressing | SaaS | Moderate | Bradley Stine | bradley.stine@omnigo.com | TRAQ7 is an investigation and evidence management solution that collects and manages physical and digital evidence, ensuring evidence is handled correctly with a proper chain of custody. It provides an End-to-End solution that is in one digital ecosystem, available on all devices, is secure, customizable, Court admissible, and reduces a customers’ overall cost / labor footprint. This includes: - Providing an accurate and comprehensive collection of evidence. - Telling a clear story of the crime scene and ensuring that probable cause can be explained. - Minimizing the need for follow-up through clear and understandable workflows. - Ensuring all evidence is in one place and Chain of Custody is auditable. - Complying with CJIS requirements - Providing a responsive, mobile, modern UI available on mobile devices, laptops, and desktops - Being Court Admissible |
|||||
Malwarebytes | ThreatDown | Progressing | SaaS | Moderate | Mary Arakeri | marakeri@malwarebytes.com | Not Required | The core ThreatDown products are a combination of the platform and services provided to corporate enterprises and customers. This includes the ThreatDown Nebula (Nebula), the ThreatDown OneView (OneView), and ThreatDown Endpoint Detection and Response (EDR) Platforms. Key features of the Platform include: • Detect emerging threats • Use artificial intelligence to identify these emerging threats • Protect users from advanced ransomware infections • Remove traces of malware on end-user devices Nebula is a cloud-hosted security operations platform that centrally manages control of malware or ransomware incidents – from alert to fix. Integrating Malwarebytes Corp products into a single view, Nebula provides a graphical user interface for centralized endpoint and threat management, with integration capabilities to enhance security across any company or organization. OneView provides centralized management of multiple Nebula tenants endpoint security, licensing subscriptions, and endpoint reporting. EDR is a cross-platform threat prevention and remediation platform for Windows and Mac. |
||||
NCSBN | Nursys, ORBS, NCSBN Passport | Pending | SaaS | Moderate | Tammy Spangler | tspangler@ncsbn.org | Not Required | Nursys (nursys.org) is a comprehensive electronic information system designed for use by US state and territorial boards of nursing (BONs) that enables the collection and storage of nurse personal information, licensing information, disciplinary information and license verifications. BONs that participate in Nursys are able to view discipline and licensure details that other BONs add (with certain limitations). BONs designate what data is publicly available on NCSBN's Nursys.com website for employers and others to verify the status of nursing licenses. As of August 3, 2023, 59 BONs use Nursys. The Optimal Regulatory Board System (ORBS) (various websites) is a turnkey solution for license management and discipline enforcement across the lifespan of a nurse. It provides modules for licensing, discipline and education program management functions while efficiently reducing the operational processes at BONs. As of August 3, 2023, 16 BONs use ORBS as their licensure management system. NCSBN Passport (passport.ncsbn.org) is NCSBN's identity management system that provides BONs access to all NCSBN websites and applications. BON administrators create, manage and deactivate user accounts for their BONs. Administrators provide access rights to Nursys and ORBS application using the Passport system. As of August 3, 2023, 59 BONs utilize Passport. |
||||
OCTAGOSHealth | Octagos Health | Progressing | SaaS | Moderate | Vincent Holcomb | vince.holcomb@octagoshealth.com | Not Required | Cloud based platform for remote monitoring management of cardiac devices. | ||||
eCourtDate | eCourtDate | Progressing | SaaS | Ibrahim Aissam | ibrahim@ecourtdate.com | Not Required | Cloud-based communication and payment platform for courts and law enforcement agencies. | |||||
Reel-Scout, Inc. | Reel-Scout | Progressing | SaaS | Low | Wendi Le | wendi@reel-scout.com | Not Required | Created expressly for film offices, Reel-Scout is a business application that brings best practices to the business of recruiting and attracting productions. | ||||
SciShield Holdings, Inc | SciShield | Progressing | SaaS | Moderate | Ben Benone | ben.benone@scishield.com | Not Required | SciShield is a management platform designed to assist compliance and safety officers in tracking hazardous activity in their organization. It is a tool to allow these users to generate high level reports, track activity (such as training), log safety activity (such as Lab Inspections), manage inventory (such as equipment), and more. | ||||
Salty Cloud PBC | IsoraGRC | Progressing | SaaS | Moderate | Andrew Scheifele | drew@saltycloud.com | Not Required | Isora GRC from SaltyCloud is the Lightweight GRC Assessment Platform that enables organizations to gain risk visibility at scale without the complexities of manual processes or legacy software solutions. | ||||
Fortinet | FortiGuard | Progressing | SaaS | Moderate | Bryan Schneider | bschneider@fortinet.com | Not Required | FortiGuard security services is a set of cybersecurity intelligence services provided to subscribed Fortinet customers for countering threats in real time. It provides AI-powered, coordinated protection through security packages and query services over the secured FortiGuard delivery network. | ||||
Psych Select Software LLC | TherapyAppointment | Progressing | SaaS | Moderate | Heather Kuhn | heather.kuhn@therapyappointment.com | Not Required | Practice Management EHR software for mental healthcare professionals. | ||||
StudentBridge | StudentBridge Mobile Engagement Platform | Progressing | SaaS | Moderate | Edward Whelan | ewhelan@studentbridge.com | Not Required | The StudentBridge Mobile Engagement Platform offers an immersive mobile experience for your accepted students that helps you communicate and uncover engagement of each student based on interactions with your content. From initial acceptance notification, to next steps and orientation, stay connected to your students and ensure they have the information they need. The platform also allows institutions to increase tour access, ensure relevant visits, and enhance engagement with prospective students. The personalized tour option enables visitors to generate personalized tours based on their interests, from academic programs and residence life to dining and financial aid. | ||||
SecurityStudio Inc | SecurityStudio | Progressing | SaaS | Moderate | Kevin Orth | korth@securitystudio.com | Not Required | SecurityStudio is a continuous risk management tool designed to help you manage your cybersecurity risk in a way that matches your needs, your understanding, and your unique operational risks. | ||||
IGM Technology | Gravity | Progressing | SaaS | Moderate | Barry Ginsburg | bginsburg@igm.technology | Not Required | Gravity is a SaaS platform that provides financial reporting, budget management and lease accounting software to governmental, public and private entities in the US and Canada. | ||||
Thesis America, Inc. | Thesis Elements | Progressing | SaaS | Mark Smith | mark.smith@thesiscloud.com | Not Required | A streamlined student information system that is high tech and human centered, designed for small colleges and universities in the United States or Canada | |||||
TouchNet Information Systems, Inc. (TouchNet) | Platform Reporting | Progressing | SaaS | Moderate | Blake Gladfelter | blake.gladfelter@globalpay.com | Not Required | TouchNet supports colleges and universities as they balance competing needs to effectively manage their business and keep students safe on campus. At a time when hybrid learning experiences — including both virtual and in-person — are emerging, TouchNet delivers mobile-first strategies, reporting and analytics, and insight into student engagement to help identify trends, measure success, and inform decisions. Our U.Commerce platform solution streamlines administrative access to complete student profiles and provides all-in-one student access to payments, credentials, and services that's both flexible and secure. Additionally, U.Commerce offers refund options that meet students' evolving needs and spotlights smart tools geared toward managing and measuring student success outside the classroom. It's easy to use, simple to license, highly secure, and integrates seamlessly so you can focus on your true mission, educating students. TouchNet also support colleges and universities by providing robust, flexible reporting and visualization tools to analyze TouchNet Marketplace data and trends. This includes the ability to schedule reports for email delivery using defined filters based on target audience. These Marketplace dashboards enable clients to assist with reconciliation of items like their G/L information, payment gateway batches, and overall sales for campus or store depending on their role. |
||||
CivicPlus | CivicPlus Pay | In Process | SaaS | Moderate | A-Lign | Jim Flynn | flynn@civicplus.com | StateRAMP Approvals Committee | CivicPlus Pay is what we refer to as a "Power Product" it is an add-on to a regular website product and serves as website layer of abstraction between our other webproducts and PCI compliant payment gateways. Pay functions to redirect browsers to payment gateways and to house limited PII related to payment transactions and makes it possible for us to have a single PCI certified product rather than seeking the certification on all the connected products. | |||
CompBase, Inc. dba ClerkBase | OnBoardGOV | Enrolled | SaaS | Moderate | Jay Rosenfield | jay@clerkbase.com | Not Required | OnBoardGOV is a board and commission management solution for city, county, state government. | ||||
Wolters Kluwer | Courseware for Medicine | Progressing | SaaS | Moderate | JT Pickering | joseph.pickering@wolterskluwer.com | Not Required | Courseware is a web-based teaching and learning platform which comes with extensive healthcare education content including LMS features. Instructors can use Courseware for reference, to deliver course assignments and assign quizzes, manage grades, transform lecture presentations to include 3D models and animations, and expand and enhance anatomy lab dissections. |
||||
Masterword Services | Customer Service Portal/ Language Professionals Portal | Progressing | SaaS | Moderate | Jamal Balametov | jbalametov@masterword.com | Not Required | Allows customers to place and manage language service requests. Allows language professionals to manage their assignments | ||||
CourseMaven, Inc. | DualEnroll | Progressing | SaaS | Mark Jones | mjones@dualenroll.com | Not Required | Cloud platform for managing dual/concurrent enrollment programs at colleges/universities | |||||
Geographic Solutions, Inc. | Virtual OneStop - VOS | Pending | SaaS | Moderate | A-Lign | Felipe Medina | fmedina@geosolinc.com | Arizona Department of Homeland Security | Virtual OneStop Sapphire® is the only fully integrated workforce system in the country that provides online employment solutions for job seekers, employers, service providers, and workforce staff. Designed specifically for the diverse needs of American Job Centers, VOS Sapphire is a state-of-the art delivery system that offers labor exchange, case management, service tracking, labor market information, fund management, and federal reporting integrated seamlessly into a single, web-based system. | |||
Computer Systems Design Company | ConnectingColorado | Enrolled | SaaS | John Nebel | john.nebel@csd.net | Not Required | Job Seeker/Employer software and WorkForce Center support WOTC systems |
|||||
SailPoint Technologies, Inc. | SailPoint Identity Security Cloud | In Process | SaaS | Moderate | Fortreum | Annette Lam | annette.lam@sailpoint.com | Pima Community College | SailPoint Identity Security Cloud is a SaaS-based multi-tenant solution that enables organizations to manage and secure real-time access to critical data, applications, and systems for every enterprise identity with an intelligent and unified approach designed with advanced AI capabilities, a centralized data model, and robust workflows. The solution provides the tools and insights for agencies to meet complex compliance requirements and manage risky access to improve security posture. | |||
Cisco Systems, Inc. | Webex for Government | Pending | SaaS | Moderate | Kratos | Debbie Bidwell | dbidwell@cisco.com | Cisco Webex for Government is a cloud collaboration service that allows customers to call, meet, and message on any device with a single unified application from Webex. | ||||
Scinary Cybersecurity, LLC | Centurion | Progressing | PaaS | Low | richard@scinary.com | Not Required | Centurion is an MDR appliance. | |||||
DNAnexus, Inc | Platform | Pending | PaaS | Moderate | Schellman | Loren Buhle | lbuhle@dnanexus.com | The DNAnexus Platform is a public cloud analysis and data management platform for processing high-throughput molecular data; for combining molecular, clinical, and real-world data to discover relationships relevant to patient and population health, precision medicine, drug discovery and regulatory approval; and for enabling a network of government, academic, and commercial collaborators to securely form research communities. DNAnexus presents a Platform-as-a-Service including a brandable, customizable web interface, and an API for integration with upstream and downstream systems such as Laboratory Information Management, Clinical Trial Management, Electronic Data Capture, and clinical interpretation and reporting systems. | ||||
RapidDeploy | Radius Mapping, Eclipse Analytics, Lightning App | Progressing | SaaS | Moderate | Christo Smeda | christo.smeda@rapiddeploy.com | Not Required | Radius is a cloud-based tactical 9-1-1 mapping solution for ECCs. Radius is powered by an NG9-1-1 GIS platform that leverages Esri capabilities and the customer’s authoritative GIS data. In addition to countless base layers and standard feature layers, one can easily configure custom map layers, Geocoding, and other services in real-time. Eclipse is an easy-to-use cloud-based analytics solution. It provides reports that are most important to PSAPs to drive operational efficiency and state-required reporting on-demand. When deployed at a state level, Eclipse Analytics provides a single source of truth that can quickly be scaled. RapidDeploy Lightning is a mobile app designed specifically to empower Field Responders with the tools and information they need to respond to emergencies swiftly and effectively. It equips them with the vital situational awareness and capabilities to make critical decisions in the field and ultimately, help save lives. |
||||
ShareStream | ShareStream Video Platform | Progressing | SaaS | Moderate | David Weinstein | david.weinstein@sharestream.com | Not Required | The ShareStream Video Platform is tailored to the unique needs of education, where streamlined content ingestion, centralized media management, and collaborative video-based learning are paramount. Among other benefits, ShareStream enables academic institutions to embrace innovative teaching models including flipped classrooms and active learning, and enhance student engagement and learning outcomes. | ||||
Zimperium | Zimperium zIPS | Pending | SaaS | Moderate | Coalfire Systems | Brian Caldwell | brian.caldwell@zimperium.com | Zimperium zIPS is an advanced mobile threat defense solution for enterprises, providing persistent, on-device protection to corporate-owned and BYOD devices. Leveraging advanced machine learning, Zimperium zIPS detects both known and unknown threats across the kill chain: device, network, phishing, and app attacks. Once deployed on a mobile device, zIPS begins protecting the device against all primary attack vectors, even when the device is not connected to a network. | ||||
Mimecast Ltd. | Mimecast StateRAMP Grid | Pending | SaaS | Moderate | Schellman and Company, LLC | Harvey Seale | hseale@mimecast.com | City of Reno | Mimecast StateRAMP Grid is a set of cloud services designed to provide next generation protection against advanced email-borne threats such as but not limited to malicious URLs, malware, impersonation attacks, as well as internally generated threats. | |||
Steel Patriot Partners | Federal ZenGRC | Pending | SaaS | Schellman | Jason Ford | jford@steelpatriotpartners.com | Federal ZenGRC is a tool for creating, implementing, and managing a Governance, Risk, and Compliance (GRC) program. It facilitates effective and efficient GRC functions, such as document management, program control management, security and compliance framework alignment, approval, internal audit, external assessment, risk assessment, vendor risk assessment, and continuous monitoring. It leverages an object-based approach allowing full mapping across object types ensuring a holistic view of the program structure and cohesiveness. It securely stores evidence for all object types and enables reuse across multiple frameworks and audits. Management and evidence- collection tasks can be automated and workflows assigned to guide proper execution by organizational personnel. Federal ZenGRC is delivered as a software-as-a-service (SaaS) offering using Amazon Web Services (AWS) GovCloud cloud computing, leveraging isolated accounts per environment. It is available to public companies, federal, state, local, and tribal governments, research institutions, federal contractors, and government contractors that demonstrate requirements for governance, risk, and compliance services. |
|||||
Virtru Corporation | Virtru Data Protection Platform | Pending | SaaS | Moderate | Schellman & Company | Peter Nancarrow | pnancarrow@virtru.com | The Virtru Data Protection Platform is a data-centric content encryption solution that provides for pervasive protection of content types, the ability to share content internally and externally without manual encryption key exchanges, and integration with existing applications and workflows. | ||||
Talkdesk | CX Cloud FedRAMP Edition | Progressing | SaaS | Moderate | Annabel Starratt | annabel.starratt@talkdesk.com | Not Required | Talkdesk CX Cloud™ is a cloud-native contact center platform that helps government institutions deliver modern customer service, increase efficiencies, reduce costs, and innovate with technology to better meet their mission. The secure, flexible, and open platform offers a comprehensive suite of applications for voice and digital engagement, workforce management, and contact center operations. Talkdesk CX Cloud provides seamless engagement across voice and digital channels, preserving conversation context, to create a connected customer journey with more personalized interactions. A single, unified interface provides employees with all tools and data needed to deliver exceptional customer experience, empowering them to work more efficiently and effectively. With clicks, not code, non-technical stakeholders can orchestrate customer journeys and route calls to the right agencies, departments, or resources the first time. Workforce management tools optimize staffing and scheduling decisions, reduce administrative effort, and deliver employee experiences designed to meet the needs of modern, distributed workforces. Real-time reporting and tools to evaluate customer interactions enable actionable feedback for improved service quality and performance. The platform reduces burden on IT resources with low-code and no-code tools for customization and personalization to ensure agility despite budget and resource constraints. For added flexibility, Talkdesk offers a BYOC (bring-your-own-carrier) option to ensure that current telephony infrastructure is not a barrier to cloud adoption and IT modernization. Features: - Voice Engagement: Route calls based on caller data, IVR selection, business hours, agent skills, and other out-of-the-box variables, or configure your own custom attributes, to optimize the caller experience. Leverage a full suite of call handling features, including click-to-call functionality. - Digital Engagement: Interact with customers on their preferred communication channel, including chat and SMS. - Orchestration & Routing: Orchestrate your customer's journey and experience with a visual routing designer that enables non-technical stakeholders to build IVR menus and flows using clicks, not code, and a powerful routing engine that gets your customers to the right resource the first time. - Connections: Quickly build custom integrations and actions between Talkdesk and third-party systems, for any systems that are not part of the Talkdesk out-of-the-box integrations library. - API Access: Fully documented APIs are available to connect and synchronize other apps (e.g., CRM, mobile app, etc.) with your contact center. - BYOC (bring-your-own-carrier): Gain the benefits of a leading cloud-native contact center platform while maintaining your existing telephony infrastructure and carrier relationships. - Agent Workspace: Surface customer data (including contact information, open tickets, - previous interactions) on a “single pane of glass” so agents know who’s contacting them and have the necessary context. Eliminate context-switching between applications to improve productivity and time to resolution. - Standard Reporting: Improve contact center agents’ performance with real-time and historical reporting on performance against SLAs and key metrics in a comprehensive set of out-of-the-box reports and dashboards. - Custom Reporting: Get a more granular and bespoke view of your contact center data with custom reports and dashboards. Use custom calculations to blend more than 900 values to define new measures and report on virtually any metric. - Quality Management: Evaluate contact center agent interactions, identify key areas of improvement, and provide agents with the actionable feedback they need to improve service delivery and customer satisfaction. Includes unlimited voice recording storage. - Workforce Management: Anticipate customer demand and plan and develop staff schedules more effectively with accurate, omnichannel forecasts based on historical and real-time data. |
||||
Infor | Infor Government Solutions - GovCloud | In Process | SaaS | Moderate | SecureIT | Lillian Wetherington | lillian.wetherington@infor.com | StateRAMP Approvals Committee | Infor Government Solutions (IGS) offers integrated cloud application suites tailored for industries such as Public Sector, Aerospace & Defense, Automotive, Industrial, and Healthcare, leveraging the Infor Operating Service Platform (Infor OS) to drive digital transformation. Hosted in a secure AWS GovCloud region, IGS meets strict compliance standards including ITAR, FedRAMP, HIPAA, and NIST, ensuring robust security and data protection. Key functionalities encompass Financial & Supply Management, Manufacturing ERP, and Human Capital Management, along with integrated tools for Asset & Maintenance Management and Business Intelligence. IGS also provides features like single sign-on through Infor Federated Security, customizable Enterprise Portals, and a flexible Intelligent Open Network for seamless integration across applications. With solutions designed to optimize operations and enhance decision-making, IGS empowers organizations to manage financials, streamline HR processes, and effectively oversee assets while ensuring compliance and risk management. | |||
Liaison International LLC | Centralized Application Service (CAS) | Progressing | SaaS | Moderate | Eric Chailler | echailler@liaisonedu.com | Not Required | The cloud-based application service streamlines researching and applying to multiple programs of interest, guiding students through the application process. With CAS you will: - Encourage application completion - Provide institution-to-student connection - Make your data actionable |
||||
CivicPlus | CivicPlus Municipal Website Central | In Process | SaaS | Moderate | A-Lign | Jim Flynn | flynn@civicplus.com | StateRAMP Approvals Committee | The CivicEngage Central (CivicEngage) content management system (CMS) is robust and flexible with all the features and functionality you need today and in the future. Developed for municipalities that need to update their website frequently, CivicPlus provides a powerful government content management structure and website menu management system. The easy-to-use system allows non-technical employees to efficiently update any portion of your website. Each website begins with a unique design developed to meet your specific communication and marketing goals, while showcasing the individuality of your community. Features and capabilities are added and customized as necessary, and all content is organized in accordance with web usability standards. | |||
Tronic | Tronic Platform | Progressing | SaaS | Low | Rick Synrod | rick@tronic.app | Not Required | The Tronic Platform is a marketing technology (mar-tech) SaaS platform enabling brands and companies to engage with their audiences on a more personalized, gamified manner by enhancing existing, or implementing new, loyalty and membership rewards programs. | ||||
FormAssembly, Inc. | FormAssembly Gov Cloud (FAGC) | In Process | SaaS | Moderate | A-LIGN Compliance and Security, Inc. dba A-LIGN | Chad Cragle | chad@formassembly.com | FAGC is a web application developed to help businesses build, design, and manage web forms and surveys. The application is aimed at professionals looking to automate form creation independently and can be used without the help of web developers. FAGC helps organizations in multiple industries quickly create web forms, collect data, and eliminate arduous workflows and manual data entry through smart integrations, all in a secure and compliant manner. | ||||
Eightfold AI | Eightfold Talent Intelligence Platform | In Process | SaaS | SR24011 | Coalfire | James Hengsterman-Cash | jcash@eightfold.ai | StateRAMP Approvals Committee | The Eightfold Talent Intelligence Platform (EF TIP) is a Software as a Services (SaaS) offering that has been built with AI technology that radically increases the effectiveness of talent operations, so recruiting and HR teams can reach their goals for recruitment, retention, diversity, and staff development. Only Eightfold offers one platform that increases the performance of talent operations company wide, controls costs, and reduces the need for one-off tools. The Eightfold Talent Intelligence Platform is comprised of multiple standalone modules that can be used separately or together based on the specific needs of the agency. Modules available include: 1. Talent Acquisition - Talent Acquisition is an Eightfold offering that provides a recruiting solution covering all processes from requisition to offer. Key capabilities include sourcing, screening, personalized career site, diversity analytics, candidate masking, candidate relationship management, event recruiting, interview scheduling, and interview feedback. 2. Talent Management - Talent Management uses AI to guide employees to what’s next in their careers. Talent Management surfaces the skills, capabilities, career trajectory, and potential of employees and suggests potential roles or upskilling opportunities based on the unique profile of each employee. Key capabilities include an employee profile, Career Hub, talent marketplace, upskilling and reskilling, succession planning, internal mobility, and mentoring. 3. Talent Flex - Eightfold Talent Flex is an AI-powered solution for HR and procurement organizations to efficiently source and manage high quality contingent workforces at scale. Talent Flex recommends contingent workers across all available channels based on their capabilities, potential to succeed, availability, and budget. 4. Workforce Exchange - The Eightfold Workforce Exchange AI-powered career center efficiently matches job seekers with employers at scale in support of public policies that accelerate the reemployment of citizens. Public sector and other non-profit organizations can utilize Workforce Exchange to offer employment matching services to their constituencies. Current implementations of Eightfold Workforce Exchange include the Eightfold Career Exchange and the OneTen Technology Platform. |
|||
Anthology | Anthology Student Success | Enrolled | SaaS | Moderate | Nicole Anderson | nanderson@anthology.com | Not Required | Anthology Student is a cloud-based Student Information System (SIS) that enables institutions to manage the entire academic lifecycle of a student from Acceptance to Graduation, including financial aid, student accounts, career services, and a robust analytics repository. | ||||
Wolters Kluwer | CoursePoint | Progressing | SaaS | Moderate | JT Pickering | joseph.pickering@wolterskluwer.com | Not Required | Wolters Kluwer’s CoursePoint system is a learning application that includes courseware such as digital textbooks (eBooks), interactive tutorials, simulations, videos, quizzes, etc., through a public web portal. Students are assigned a selection of courses and due dates by their instructors or learning institution, which are products that the user has a valid subscription or entitlement to. CoursePoint pulls in the applicable eBooks, tutorials, simulations, videos, etc. (called assets) from their data stores as well as other Wolters Kluwer systems such as Lippincott Advisor and vSim or third-party partners such as Vital Source and Laerdal. Once the student has completed the course, their grade is transmitted to the instructor and/or the learning management system (LMS) used by the institution, such as Canvas or Blackboard. | ||||
Microsoft | Microsoft Office365 Government Community Cloud | Pending | SaaS | High | Coalfire Systems | Shawn Veney | shawn.veney@microsoft.com | Office 365 Government Community Cloud is built for US federal, state, local, and tribal government organizations and combines the Microsoft Office desktop suite with cloud-based versions of Microsoft's next-generation communications and collaboration services—including Microsoft Exchange Online, Microsoft Teams, and Office for the web. Microsoft Office 365 Government Community Cloud can support data that’s subject to the CJIS Security Policy and IRS Publication 1075 along with FedRAMP Moderate and other compliance standards. | ||||
Labfront | Labfront | Enrolled | SaaS | Moderate | Jordan Masys | jordan@labfront.com | Not Required | Labfront is a software platform that enables real-world physiological data capture from wearables, custom surveys, and event markers—all in one place and conveniently timestamped. It also allows for participant adherence tracking and offers data analysis tools, all while adhering to strict compliance standards, including HIPAA, GDPR, and NIH Data Policies, etc. Launched in 2021, its platform is currently used by over 150 top research institutions, such as Stanford, Harvard, and NASA. Labfront enables the extraction of Garmin wearables data, such as physical activity summaries, steps, sleep staging, Garmin stress score, along with high-resolution data, such as respiration, 24/7 beat-to-beat intervals of heart rate, SpO2, etc. Labfront seamlessly facilitates the download of this raw data, ensuring researchers have the flexibility to conduct their analysis at any time. |
||||
WalkMe | Digital Adoption Platform | In Process | SaaS | Moderate | SR23052 | Coalfire | Jon Brockway | jon.brockway@walkme.com | City of Chandler, Arizona | WalkMe maximizes and accelerates the impact of your digital transformation strategy by driving user adoption of your digital assets. Leverage WalkMe’s Digital Adoption Platform to constantly identify gaps and problem areas, and drive users to success, codelessly, and without changes to your underlying platforms.The WalkMe Digital Adoption Platform (DAP) system adapts software and websites to meet the needs of employees, customers & citizens. The WalkMe DAP system creates a consistent user experience, streamlining productivity and engagement while reducing costs. The WalkMe FedRAMP offering is specific to federal customers and is built on a dedicated government environment. | ||
Gecko Labs Ltd | Gecko Engage | Progressing | SaaS | Low | Charlotte Hughes | charlotte.hughes@geckoengage.com | Not Required | The Gecko platform is a set of modular tools to increase student engagement with higher education institutions. The Gecko platform is made up of the following modules: ● Gecko Live Chat allows users to respond to student inquiries instantly and accurately. It also collates messages from multiple channels and delivers them all to one easy-to-manage inbox. ● Gecko Chatbot is a real-time chatbot for universities, colleges & higher education institutions that intelligently answers hundreds of student enquiries simultaneously. It does so from multiple communication channels, freeing users to build real relationships with the students who need it most. ● Gecko Cloud Call Centre allows users to plan, manage and conduct successful call campaigns. It is fast and easy to use with minimal training, and helps track, record and build reports for every call. It can quickly scale up or down to suit the user's needs. ● Gecko Form - An online form application to replace paper-based data capture. It is designed to integrate seamlessly with existing technology, including CRM. For Online Events, that means users can tie conversations to the overarching goals of your institution. Users can also track how one-to-one conversations influence things like applications and enrolments. ● On Campus Events - Our technology improves communications, attendance and engagement rates at on campus events. We provide mobile applications for checking in attendees, a personalised itinerary for each attendee, and real-time reporting on interactions with students every step of the way so that the data can be used to inform the personalized communications to send. ● Online Events - Taking student recruitment online isn’t about replacing human contact. It’s about facilitating it in a new way. It’s time to let prospective students explore campus from anywhere and on any device. It brings students and campus together and creates a sense of community through an engaging and interactive platform, incorporating the customer’s look and feel and creates a lasting virtual experience that's as easy to achieve as Zoom. ● Text and Email Campaign - Building student communications campaigns used to take a lot of time, coordination and effort. But with Gecko, you can create and send text messages and emails that build meaningful connections with thousands of students easily and quickly and effectively. |
||||
CivicPlus | CivicPlus Recreation Management | In Process | SaaS | Moderate | A-Lign | Jim Flynn | flynn@civicplus.com | StateRAMP Approvals Committee | Recreation Management (CivicRec) provides parks and recreation software that can help centralize all your activity, facility, staffing, and point-of-sale needs. The cloud-based nature of CivicRec means that staff can manage their operations from anywhere— and on any device. Our interface is both clean and easy-to-use so that you can present a modern face to the public. Whether the public is using the recreation registration software to sign up for programs, rent facilities, or browse catalog offerings, you can be confident that your parks and recreation department is presenting an easy-to-use option for the public, making it convenient to engage with your programs and facilities. | |||
CivicPlus | CivicPlus Municipal Website Evolve | In Process | SaaS | Moderate | A-Lign | Jim Flynn | flynn@civicplus.com | StateRAMP Approvals Committee | CivicEngage Evolve is built upon the CivicPlus® Platform’s HCMS, which means CivicEngage Evolve data seamlessly integrates with all available CivicPlus products and solutions for a consistent administrative experience. CivicEngage Evolve is easy enough for the non-technical users and functional and flexible for technical teams to take advantage of its full capabilities and API-first architecture.Perhaps most importantly, CivicEngage Evolve enables municipalities to implement a content as a service (CaaS) communication model. | |||
Snowflake Inc | Snowflake Data Cloud on Azure South Central | Pending | SaaS | Moderate | SR24039 | Fortreum | Shweta Gummidipudi | shweta.gummidipudi@snowflake.com | Snowflake is the only data warehouse built for the cloud, enabling the data-driven enterprise with instant elasticity, secure data sharing and per-second pricing, across multiple clouds. Snowflake combines the power of data warehousing, the flexibility of big data platforms and the elasticity of the cloud at a fraction of the cost of traditional solutions. | |||
Tyler Technologies | State Regulatory Platform Suite | Progressing | SaaS | Moderate | Chad Buckhaults | chad.buckhaults@tylertech.com | Not Required | State Regulatory Platform suite comprises separate, configurable applications for Licensing, Enforcement, and Inspections that can be implemented individually or as part of a complete, end-to-end installation. https://www.tylertech.com/solutions/public-administration/regulatory/state-regulatory-platform-suite |
||||
Liaison International LLC | Liaison Outcomes | Progressing | SaaS | Moderate | Eric Chailler | echailler@liaisonedu.com | Not Required | Engineered specifically for higher education admissions and enrollment management teams, Liaison’s Outcomes CRM is a student enrollment software that’s easy to manage and customize, freeing your resources to build a best-fit class and ensure positive student outcomes. | ||||
symplr Software LLC | symplr Contracts (formerly Meditract) | Progressing | SaaS | Low | Vijay Jayaraman | vjayaraman@symplr.com | Not Required | Healthcare contract lifecycle management software. Manage active and historical contracts, terms, approvals, and expirations for physicians and BAAs, vendors, materials, lease agreements, and more. | ||||
CobbleStone Software | CobbleStone Contract Insight | In Process | SaaS | Moderate | SR23022 | A-Lign | Tiffany Salmon | itcg@cobblestonesystems.com | CobbleStone Software is a best-of-breed leader with providing enterprise eProcurement & contract management software solutions since 1995 and has years of client feedback and industry knowledge. CobbleStone has been selected by thousands of users worldwide. CobbleStone is a United States Federal Contractor on the GSA Schedule (contract number: GS-35f-0186W) and is rated by Dunn & Bradstreet Gartner and the Better Business Bureau. | |||
Mobility 4 Public Safety | Bridge4PS | Enrolled | SaaS | Moderate | Niki Papazoglakis | admin@mobility4ps.com | Not Required | Bridge4PS is a secure mobile and desktop communications and data sharing app designed specifically for first responders to communicate in real-time across teams, departments, agencies, and jurisdictions. | ||||
HDI Solutions, Inc | TexasSure Financial Responsibility Verification Program | Enrolled | PaaS | Moderate | David Philpott | david.philpott@hdisolutions.com | Not Required | This application collects automobile insurance policy information and vehicle registration information to determine insurance coverage on vehicles registered in the State of Texas. | ||||
Qualys | Qualys Cloud Platform | In Process | SaaS | Moderate | SR23030 | Coalfire Systems | Eric Kibisingo | ekibisingo@qualys.com | The Qualys Cloud Platform (QCP) is a multi-tenant shared cloud service environment. Its unique computing power is capable of continuously analyzing and correlating information, to assist IT management with identifying and homing-in on threats and eliminating vulnerabilities. | |||
Cambridge Business Publishers | MyBusinessCourse.com | Progressing | SaaS | Moderate | Chet Smith | chetsmith@cambridgepub.com | Not Required | MyBusinessCourse.com is an online homework management and elearning system to accompany Cambridge Business Publishers Accounting textbooks. | ||||
SimpliGov LLC | SimpliGov Automation Platform | In Process | SaaS | High | SR24014 | Securisea | David O'Connell | doconnell@simpligov.com | California Department of Child Support Services | SimpliGov simplifies government processes through integrated online forms and workflow process automation that improves operations by eliminating errors, reducing costs and accelerating responsiveness to the community. SimpliGov is specifically designed for the way state and local governments do business. | ||
Snyk | Snyk for Government | Pending | SaaS | Moderate | Coalfire | Felix Geelhaar | felix.geelhaar@snyk.io | Snyk is a developer security platform that helps identify and fix vulnerabilities in code, open-source dependencies, containers, and infrastructure as code. | ||||
Fivos, Inc. | Pathways | Progressing | SaaS | Moderate | Colby King | colby.king@fivoshealth.com | Not Required | Registry Product | ||||
TalkLife Ltd | TalkCampus | Progressing | SaaS | Moderate | Mark Russell | mark.russell@talklife.com | Not Required | TalkCampus is a peer support community accessible via web and mobile app. It provides instant, anonymous support 24/7 for students around the world. TalkCampus enables students to interact within a professionally moderated community via posting, commenting, interacting and messaging. It supports both 1:1 and group messaging as well as the ability for user created public groups. TalkCampus also allows students to track their mood, journal, save content and engage with regularly updated and relevant well-being content. TalkCampus provides real time clinical escalation and incident reporting for at-risk students and can create bespoke communication pathways with each institution. It also embeds bespoke student services within the app. | ||||
Relativity | RelativityOne Government | In Process | SaaS | Moderate | Coalfire Systems | Kristal Davy | kristal.morris@relativity.com | RelativityOne Government brings the entire e-discovery process together in one secure and extensible platform, connected to your organization’s most sensitive data—and supported by the community of experts you need to untangle it all. Start and finish e-discovery in one solution with best-in-class security, scale, and performance and extend the functionality of the platform to meet your unique needs by leaning on apps built by our ecosystem of Relativity developer partners or building them yourself. With the latest in advanced searching and analytics, machine learning, and visualizations all built in, RelativityOne Government is your complete platform for organizing data, discovering the truth, and acting on it. | ||||
Nighthawk.cloud | LEOVision | In Process | SaaS | Moderate | Linford & Co | Scott Wedge | scott.wedge@nighthawk.cloud | *** | Nighthawk.cloud, Inc. offers a multi-Intelligence Software as a Service (SaaS) product, LEOVision, to law enforcement investigators and analysts. The SaaS platform is hosted on Amazon Web Services (AWS) GovCloud (US), giving customers a Criminal Justice Information System (CJIS) compliant way to visualize law enforcement data in a secure environment. | |||
Jotform | Jotform Government | Progressing | SaaS | Moderate | Government Team | government@jotform.com | Not Required | Jotform is a powerful online form builder that assists businesses and organizations in creating online forms, generating PDF documents, and automating workflows. Jotform Government, provided by Jotform Inc. based in San Francisco, offers customized data collection and processing solutions that meet the strict security requirements of government agencies and institutions. It provides a user-friendly platform to create online forms, convert traditional PDF contracts into digital agreements, collect e-signatures satisfying ESIGN Act requirements, automate PDF document generation, and streamline the business logic of organizations into digital workflows, all while eliminating the need for paper forms. | ||||
Centurion Software LLC | Centurion Warrants | Enrolled | SaaS | Chad Ryan | chad.ryan@centurionwarrants.com | Not Required | Electronic Search Warrant System - connects agencies and courts to allow for electronic submission, review, approval, service and returns. | |||||
Podium Education | The Global Tech Experience | Progressing | SaaS | Moderate | Isaac Gomez | isaac@podiumeducation.com | Not Required | |||||
Zendesk | Zendesk Customer Support and Help Desk Platform | Progressing | SaaS | Low | Alice Sun | asun@zendesk.com | Not Required | Zendesk is a cloud-based customer service platform, designed for companies that want to build customer relationships that are more meaningful, personal, and productive. Zendesk strives to bring businesses and customers closer together by enabling companies to provide great support and mature with self-service and proactive engagement. It is designed to be easy to use, customize, and scale. | ||||
Microsoft | Microsoft Office365 | Pending | SaaS | High | Coalfire Systems | Shawn Veney | shawn.veney@microsoft.com | State of Arizona | Office 365 combines the Microsoft Office desktop suite with cloud-based versions of Microsoft's next-generation communications and collaboration services—including Microsoft Exchange Online, Microsoft Teams, and Office for the web. Microsoft Office 365 supports many compliance standards including FedRAMP Moderate. | |||
Pulselight Holdings, Inc. | Pulselight Data Platform | Pending | SaaS | Moderate | Coalfire | Irene Manautou | team@pulselight.com | The Pulselight Data Platform and SaaS applications, such as Aura™ and Torch®, provide customers with the ability to manage and process data for scalable, automated, and extensible analytics, investigation, and case management. These applications help decision-makers use healthcare data to improve quality of care for the individuals they serve and ensure the integrity of critical public programs. Additionally, Pulselight applications give customers answers, insights, and actionable analysis. With powerful algorithms, automation, and workflow efficiencies, the Pulselight Information System helps customers: • measure, report, and act on person-centered care, service quality & access • detect, manage, and prevent incidents related to abuse, neglect and exploitation • detect, investigate, and manage cases of suspicious or fraudulent practices Uses cases include healthcare quality improvements, outcome analysis, law enforcement action, civil action, audits, overpayment recoveries, policy setting, cost control, benefit entitlements, and opioid prevention and treatment. |
||||
StreamLink Software Inc. dba AmpliFund | AmpliFund | Progressing | SaaS | Moderate | Scott Weiss | sweiss@amplifund.com | Not Required | AmpliFund was created by grants professionals, for grants professionals, and its features are designed to manage every aspect of grant funding in a single solution. AmpliFund offers comprehensive end-to-end grant management for both grant seekers and makers, covering pre- and post-award activities. It provides centralized control over the entire grant lifecycle, including opportunity identification, application submission, award management, compliance, reporting, and performance tracking. AmpliFund provides customers with a cost-efficient enterprise grant management solution by offering a multi-tenant SaaS subscription model. | ||||
Tophatmonocle | Aktiv | Progressing | SaaS | Moderate | Ali Firooz | stateramp@tophatmonocle.com | Not Required | Aktiv Learning’s next-generation platform increases student engagement and improves student outcomes in STEM courses. Students will use this platform to access in-class engagement, online homework, and e-texts for all general chemistry courses. | ||||
Iron Mountain | InSight GCP | Pending | SaaS | Moderate | Coalfire | Arun Natarajan | arun.natarajan@ironmountain.com | The Iron Mountain InSight system is a cloud-based Software-as-a-Service (SaaS) solution that provides customers with a content services platform that leverages Machine Learning (ML) and Artificial Intelligence (AI) to automatically classify, extract, and enrich physical and digital content. The system has a FIPS-199 categorization of Moderate, and the solution is hosted in the Google Cloud Platform (GCP) as well as AWS Gov Cloud (AWS). InSight leverages GCP and AWS services to provide scalability, virtual segmentation, and high availability in the cloud. InSight is being run as a single-tenant product, where each federal/state customer has its own isolated environment for storage and data processing and access to the product through a public-facing web application. The InSight system aligns with the NIST SP 800-145 description of a cloud computing system and has received an ATO for GCP. | ||||
CivicPlus | NextRequest | In Process | SaaS | Moderate | A-Lign | Jim Flynn | flynn@civicplus.com | StateRAMP Approvals Committee | NextRequest is the leading FOIA management software empowering local and state governments with tools to easily manage and fulfill public records requests. Agencies and special districts of all sizes rely on NextRequest to coordinate records requests cross-departmentally, to increase compliance, and to decrease costs associated with record management. Agencies save time and increase transparency with our secure and easy-to-use software. | |||
ClassLink | LaunchPad | In Process | SaaS | Moderate | Ignyte | Jeffrey Janover | jjanover@classlink.com | Not Required | ClassLink LaunchPad is a single sign-on (SSO) tool that provides access to school resources, including apps, files, and classes. It's available on many devices, including Android, iOS, and Mac, and is designed for education. | |||
Armedia LLC | Armedia Content Cloud | In Process | SaaS | Moderate | SR23039 | A-Lign | Matilda Asiedu | matilda.asiedu@armedia.com | StateRAMP Approvals Commitee | The Armedia Content Cloud (ACC) provides an operational, fully provisioned infrastructure that meets FedRAMP Moderate requirements. ACC is a digital transformation platform that allows public sector clients to meet agency requirements with enhanced reliability and security without major capital investment and reduced technical staff. ACC offers four applications to support digital transformation and hyper-automation – ArkCase for case management system, Hyland Alfresco for document, business process and records management system, Ephesoft Transact for Intelligent Document Processing and the Open Text Documentum enterprise content management (ECM) system. ACC provides a wide array of digital transformation solutions to include Business Process Management, Case Management, Complaint Management, Correspondence Management, Document Management, eFiling and eDocket Management, FOIA Management, Intelligent Document Capture, Public Records Request, Records Management, etc. |
||
Wolters Kluwer | Sentri7 Drug Diversion | Progressing | SaaS | Moderate | JT Pickering | joseph.pickering@wolterskluwer.com | Not Required | Sentri7 Drug Diversion is the only drug diversion software funded by the NIH. Utilizing machine learning, Sentri7 enables quick detection of potential diversion from purchase to the patient with predictive analytics and actionable dashboards. Sentri7 integrates data from multiple IT systems including Automated Dispensing Cabinet (ADC), Electronic Health Records (EHR), and other data systems to provide a comprehensive assessment of diversion risk across the entire supply chain. |
||||
PayZen, Inc. | Post Service, Care Card | Progressing | PaaS | George Abgaryan | gabgaryan@payzen.com | Not Required | The products allow patients to enroll in no-interest, no-fee payment plans. We pay the healthcare providers upfront after a patient enrolls. | |||||
McAfee Enterprise | MVISION Cloud | In Process | SaaS | High | SR21026 | Kratos | Patrick McEnany | partick_mcenany@mcafee.com | McAfee MVISION Cloud discovers all cloud services in use across an organization’s network. It provides a corresponding readiness rating that allows system and data owners to assess cloud risk. It detects anomalous activity that may be indicative of a security breach or insider threat, enabling the organization to respond immediately to potential incidents. Additionally, McAfee MVISION Cloud enhances privacy controls by applying standards-based encryption or tokenization mechanisms to structured or unstructured data while maintaining searching, sorting, and formatting capabilities. McAfee MVISION Cloud enforces risk-based, inline, or offline compliance policies using notifications, blocking, or selective encryption to prevent the leakage of Personally Identifiable Information (PII) and offers the ability to synchronize policies with existing data loss prevention (DLP) solutions. | |||
Commvault Systems, Inc. | Commvault | Pending | SaaS | High | SR24028 | Coalfire | Chris Hobert | chobert@commvault.com | *** | Commvault Cloud for Government delivers a fully automated cyber resilient SaaS data backup and recovery solution, with automated deployment, reduced overhead, automated patching and upgrades, continuous security monitoring, and requiring no Agency maintenance. Fully differentiated storage enables the move to cloud by providing the option to leverage cloud or on-premises storage within the web console for hybrid cloud workloads that require synchronization to sustain operational readiness and mission delivery. | ||
Cisco Systems, Inc. | WEBEX CONTACT CENTER ENTERPRISE FOR GOVERNMENT (WXCCE-G) | Pending | SaaS | Moderate | Coalfire | James Huang | jamhuan2@cisco.com | StateRAMP Approvals Committee | - Webex® Contact Center Enterprise for Government provides a comprehensive, customizable, highly secure solution to meet the complex needs of the world’s largest contact centers. With readily extensible via open APIs and backed by the security and support benefits only available from a trusted brand like Cisco, Webex® Contact Center Enterprise for Government opens a path to the cloud for even the most business-critical contact centers. Webex® Contact Center Enterprise for Government is owned, operated, and supported directly by Cisco for use in the government offering the following capabilities: Enterprise scale - Support for up to 36,000 concurrent agents, Webex® Contact Center Enterprise for Government has the proven scale, security, and features to meet the needs of today’s largest enterprise contact centers. Cisco backed - Trust your investment in a solution owned, managed, and operated as part of Cisco’s global data centers and cloud infrastructure, coupled with full adherence to Cisco’s market-leading security and privacy standards for the utmost in reliability, stability, and compliance. Customizable and extensible - Open and flexible cloud platform enables you to easily integrate your contact center with not only the rest of your Government Webex applications, but also with other critical government cloud applications such as Customer Relationship Management (CRM) and Workforce Optimization (WFO) platforms central to effectively running your business. Optimized user experience - A sophisticated, yet intuitive administration portal puts contact center operations management in the hands of the business, freeing the business to operate with a new level of speed and unburdening critical technical resources. Webex® Contact Center Enterprise for Government consists of an integrated, cloud-based feature set of core and optional components that provide for Auto Call Distribution (ACD), Interactive Voice Response (IVR), Computer Telephony Integration (CTI), outbound services, reporting, mobile applications, and IP telephony—all on an omnichannel basis. Solution features include: Automatic Call Distribution (ACD) - Routing services based on Cisco’s Unified Contact Center Enterprise (UCCE) and Cisco Unified Communications Manager (UCM) technology. - CD functionality which allows collection and routing of calls to a contact center agent conversion of calls to formats that can be carried by a data network to their recipient rules-based routing multi-skilled expert agent selection precision routing supervisor features call prompting announcements and music-on-hold and queuing capabilities. - Precision routing, which sends the contact to the best available resource based on information about the caller and the attributes of the agent. By delivering the contact effectively, companies can reduce overall handling time, decrease the need for multiple transfers, and increase customer satisfaction with the experience. Precision routing is supported for all contact channels, including voice, video, web, chat, and email. - Computer Telephony Integration (CTI): Screen pops based on ANI or customer-entered information can be used to improve efficiency and customer satisfaction. - Queue enhancements: includes priority within queue, announcements/prompts within the queue, redirect on no answer. Agent and supervisor desktop Included with Webex® Contact Center Enterprise for Government is the Cisco Finesse ® desktop, a next-generation agent and supervisor desktop designed to provide easy access to the applications and information your customer service organization needs through a customizable web-based interface. The Cisco Finesse ® desktop offers contact center representatives an intuitive, easy-to-use desktop design to help improve their performance and satisfaction, in turn enhancing their ability to provide quality customer service. Desktop features include: -User-configurable settings such as codes and speed dials - Direct reporting integration for select real-time reports - Screen pop service capabilities - Customized agent activity grids to separate inbound, outbound. and internal calls - Supervisor tools such as force logout, silent monitor, and real-time statistics - Integration to customer data via a published gadget integration methodology Supervisory features Supervisors can view agent states and call information, send chat messages to agents, interrupt or intercept calls, record conversations, and silently monitor agent calls from the corporate network or through a remote dial-in connection. These features add value to the supervisor’s role in the contact center and help them effectively manage their teams. These capabilities include: - chat capabilities for supervisors and agents. Supervisors can send chat messages to agents participating in a call, allowing supervisors to coach agents unobtrusively on cross-sell and up-sell opportunities and help agents resolve customer situations. Supervisors can interrupt an agent’s call to create a three-way conference, and then interact with both the caller and the agent to help resolve a concern. A supervisor can remove the agent from a call using the Intercept feature, allowing the supervisor and caller to complete the call on their own while the agent handles another customer request. - Change an agent’s state from Supervisor desktop. Agents may forget to make themselves available to take calls after a break or neglect to log out when away from their workstations for an extended period. Supervisors can easily log out missing agents or make unintentionally idle agents ready to take calls. - Change an agent’s skill profile in real time. This capability gives supervisors tactical tools to manage their agent teams and support contact center management objectives. Administration and management portal Streamlined administration allows managers to perform all contact center administration centrally. The administrative interface allows agents to be set up to handle voice, web, chat, and email contacts, depending on their assigned skill sets. The interface allows system managers, administrators, and supervisors to develop, modify, or view routing scripts manage the system configuration monitor contact center performance define and request reports and help ensure system security. This one user interface provides enterprise-wide control across a single or multisite contact center. Webex® Contact Center Enterprise for Government web-based administration portal includes capabilities to: - Manage access and role-based permissions - Search for an agent team or skill group - Quickly add or remove agents to or from a skill or team - Create agents, change agent passwords, and disable agents - Bulk and clone agents - Create contact center users - Audit trail retention for six months - Administer Unified Communications (UC) phones and features - Customizable dashboards - Enable access to most functions via a mobile device (i.e., a smartphone or tablet if the device is connected to the customer’s network) - Create and publish audio files in real time - Automate distribution of audio files to media servers - Enable/disable pre-recorded audio prompts - Access restrictions Self-service Interactive Voice Response (IVR) Provided with the solution is a self-service interactive voice response via Cisco Unified Customer Voice Portal (Unified CVP). With Unified CVP, you can pay a bill, order products and track delivery, locate a dealer, schedule a pickup, change name and address information, make travel arrangements, check payment status, receive notification of unusual activity, and request literature or product information. Customers can use voice commands to retrieve the information they require without ever speaking with an agent, or to quickly navigate to the correct department or agent who can help them. Unified CVP is designed to simplify business integration, increase flexibility, and provide efficiency gains. These features can reduce business costs and dramatically improve customer satisfaction. |
|||
GovernmentJobs.com Inc, d/b/a NEOGOV | NEOGOV | Pending | SaaS | Moderate | 2023-03-28 | The Cadence Group | Wally Finley | infosec@neogov.net | NEOGOV is a Software as a Service (SaaS) cloud provider of Human Capital Management (HCM) software. Our software meets the unique needs of government sector human resource (HR) management by managing the entire employee lifecycle, streamlining processes, and automating routine tasks. We provide HRMS and talent management software (TMS) that enable government agencies to source, recruit, hire, onboard, develop, and retain a high quality workforce that represents the communities they serve. Our HCM platform includes specific solutions for: Recruiting: applicant tracking, diversity (DEI) hiring, candidate relationship management (CRM), and employee onboarding. Employee training, development, and retention: learning management system (LMS), electronic forms, and performance management. Managing employee data: human resources information system (HRIS) that includes core HR, time and attendance, benefits management, payroll, and payroll services. |
|||
Springshare | LibApps Suite | Progressing | SaaS | Moderate | Satish Chandra | satish@springshare.com | Not Required | Springshare LibApps Suite consists of SaaS tools for librarians which include the following: LibGuides - for curating resources and building websites LibAnswers - ticketing/help desk, social media, and LibChat LibCal - manage library hours, events, rooms, equipment LibConnect - build and cultivate strong relationships with the community LibStaffer - manage staff schedule, with reporting LibWizard - create forms, surveys, tutorials and quizzes LibInsight - gather data and analyze statistics More information at https://springshare.com/platform/ |
||||
UiPath | UiPath Automation Cloud Public Sector | Pending | SaaS | Moderate | Schellman & Company | James Norden | james.norden@uipath.com | *** | UiPath Automation Cloud Public Sector is a FedRAMP-authorized SaaS delivery of the UiPath Business Automation Platform, designed for US public sector organizations. The UiPath Business Automation Platform offers comprehensive, integrated AI-powered automation capabilities, including: UI + API Automation, Process Orchestration, Document Understanding/IDP, Process and Task Mining, Low-code Application Development, Testing, Digital Assistants, and more. It implements governance and management tools across these capabilities, and delivers an open architecture with connectors to optimize and automate processes across any technology. By using self-hosted Robot and Studio components, organizations also have the option to work with data in-place, without moving it to Automation Cloud. | |||
Mdf commerce, Inc | SOVRA Government Technology Software | In Process | SaaS | Moderate | Earthling Security | Mike Morrow | mike.morrow@mdfcommerce.com | Our eProcurement solutions are designed to fully support public procurement’s unique policies, procedures and processes. They can be used standalone or integrated with an ERP or other third-party finance system, to fully automate source-to-contract and procure-to-pay workflows efficiently, intelligently and transparently, with complete configurability to every organization’s specific requirement. | ||||
Extreme Networks | Extreme IQ | Enrolled | SaaS | Moderate | Craig Ficik | cficik@extremenetworks.com | Not Required | ExtremeCloudTM IQ provides unified management for wired, wireless, and SD-WAN to reduce risk and simplify operations. It is a core component of Extreme’s One Network, One Cloud framework that is secure by design and provides cloud choice for data residency and privacy. ExtremeCloud IQ delivers unified management of Extreme devices, and it manages Cisco and HPE Aruba switches, easing the transition to cloud-based management. It also provides basic setup and monitoring of a large array of other third-party devices. This innovative platform streamlines operations by delivering new levels of network visibility, automation, and intelligence using transparent machine learning (ML) algorithms. ExtremeCloud IQ incorporates many artificial intelligence (AI) Networking capabilities such as ML Insights and Client Monitor that help users reduce mean time to resolution (MTTR). It also features intuitive configuration workflows, real-time and historical monitoring, comprehensive troubleshooting, and integrated network applications. |
||||
Telos Corporation | Xacta SaaS | Pending | SaaS | High | SecureIT | Michael McGehee | michael.mcgehee@telos.com | StateRAMP Approvals Committee | Xacta® is the premier IT risk management and compliance solution, bringing meaningful insights to IT security specialists, CISOs, and other decision-makers who need to operationalize key security risk and compliance frameworks. The SaaS instance of Xacta offers a vast knowledgebase of thousands of individual security requirements and associated test procedures, organized and cross-referenced into more than 100 security policies and standards to produce artifacts in traditional office documents and digital formats like Open Security Controls Assessment Language (OSCAL). | |||
Evenly Odd Inc. DBA Knack | Knack | In Process | SaaS | Moderate | SR23017 | Information Technology Company | Eric Katherman | eric@knack.com | Knack empowers everyday innovators to easily overcome critical business challenges. By leveraging Knack’s intuitive no-code platform and expert builder network, teams can quickly build custom applications that collect and manage data, automate processes and move workflows online. | |||
Voatz, Inc. | Voatz RABDMR | Progressing | SaaS | Moderate | Nimit Sawhney | ns@voatz.com | Not Required | The Voatz RABDMR (Remote Accessible Ballot Delivery, Marking and Return) system allows a registered voter to securely and privately cast a ballot from a mobile device for public elections. | ||||
Content Guru | storm Cloud Contact Center | In Process | SaaS | High | SR23060 | Fortreum | Andrew Casson | acc@contentguru.com | storm from Content Guru delivers a single-stack, end-to-end customer experience solution, providing not just the essentials of CCaaS (Contact Center as a Service), but a seamless customer journey. storm brings together different channels of communication in a single contact center platform, allowing state and local government agencies to focus on delivering outstanding citizen experiences. As well as its core CCaaS capabilities, storm includes cutting-edge CRM, powerful reporting and analytics tools, workforce optimization, workforce engagement management, customized audio conferencing for command control applications, unified communication, and deep API integrations. With all the data stored securely in one customer data platform, state and local government agencies can easily turn insight into actions. These powerful capabilities are supported by AI-driven Intelligent Automation and delivered with a minimum of 99.999% reliability – allowing storm to deliver hyper-scale, agile solutions, for state and local government agency customers. |
|||
Pitney Bowes | SendPro360 | Pending | SaaS | Moderate | A-lign | John Winkelman | john.winkelman@pb.com | Service Description Pitney Bowes SendPro 360 Sending, Receiving, and Locker Management Solution Pitney Bowes SendPro 360 is a comprehensive, cloud-based sending, receiving, locker management, and analytics solution that powers your mailroom operations for maximum efficiency and transparency. Multi-Carrier Shipping and Mailing SendPro 360 makes mailing and shipping quick and easy by empowering departments with the flexibility to send in the way that’s right for them. Users save time and money by printing stamps directly from the online interface and by accessing SendPro 360 multi-carrier shipping functionality to compare rates and print labels across major carriers. The ability to track spend and activity by account or department, facilitates project or departmental chargebacks for accurate accounting. SendPro360 includes a dedicated certified and electronic return receipt (ERR) and registered mailing process with proof of delivery reporting. Also, qualified users can prepare ship requests for packages sent to the mailroom for processing. Package Receiving, Tracking and Delivery The SendPro 360 platform automates the process of receiving, tracking, and delivering incoming packages and mail through a simple scan of a barcode. Manually logging items instantly becomes a process of the past. It can configure delivery routes, provide lists of packages, and has the ability to manage assets. Package tracking notifications via email and SMS as well as SLA management simplify and enhance the experience. -The SendPro 360 platform automates the process of receiving, tracking, and delivering incoming packages and mail through a simple scan of a barcode. Smart Locker Management Effectively manage the delivery process of packages, assets, and other important items moving across your organization with SendPro 360 Smart Locker Management capabilities. This software solution is the intelligence behind a physical smart locker and helps ensure safe, secure contactless delivery. It modernizes the pickup process by enabling convenient 24/7 self-service locker access and automates alerts notifying recipients they have an item for pickup while preserving chain-of-custody. Our Smart Locker Management Software allows users to remotely manage or troubleshoot smart lockers across a single site or multiple locations. Plus, it offers extensibility ensuring seamless expansion to additional workflows to meet evolving needs. -These solutions will require customer-provided hardware and will require assessment, authorization, and continuous monitoring of such capabilities by using agencies. Pitney Bowes has the technical expertise to help determine which hardware best meets agency needs and to assist with agency authorization and approval processes. Analytics From smaller mailrooms to multi-location operations, SendPro 360 offers complete visibility into your receiving and sending operations. Dynamic views can be filtered by divisions, locations, cost accounts, and users, across any date range. View and manage postage and shipping spend, and gain insights to your receiving and locker metrics all the way through final delivery to ensure packages and mail are accounted for and delivered on time. Gauge performance, operator efficiency, and resource utilization to ensure service level agreement (SLA) metrics are being met. To locate a package, SendPro 360 provides end-to-end tracking of packages, locker activity, as well as shipping and mailing activity across your government agency. |
||||
nPhase Inc. | REDCap Cloud | Progressing | SaaS | Moderate | Frank Hailstones | fhailstones@redcapcloud.com | Not Required | REDCap Cloud technology empowers organizations to easily collect, integrate, standardize, analyze, and share real-world, regulatory-grade data for any use case. Our modern platform delivers a customizable suite of integrated applications to support development of life science breakthroughs from research to commercialization. | ||||
Equifax | Equifax EDGE | In Process | PaaS | Moderate | SR22017 | Kratos | Shea Giesler | shea.giesler@equifax.com | Equifax Government Data Exchange provides real-time income and employment verification service as well as HR management services to federal customers. These services are cloud-native and delivered using Equifax’s Data Fabric enterprise data management platform to provide maximum availability, scalability, and security. | |||
Talkdesk | CX Cloud FedRAMP Edition | In Process | SaaS | Moderate | SR24038 | Schellman & Company | Annabel Starratt | annabel.starratt@talkdesk.com | StateRAMP Approvals Committee | Talkdesk CX Cloud™ is a cloud-native contact center platform that helps government institutions deliver modern customer service, increase efficiencies, reduce costs, and innovate with technology to better meet their mission. The secure, flexible, and open platform offers a comprehensive suite of applications for voice and digital engagement, workforce management, and contact center operations. Talkdesk CX Cloud provides seamless engagement across voice and digital channels, preserving conversation context, to create a connected customer journey with more personalized interactions. A single, unified interface provides employees with all tools and data needed to deliver exceptional customer experience, empowering them to work more efficiently and effectively. With clicks, not code, non-technical stakeholders can orchestrate customer journeys and route calls to the right agencies, departments, or resources the first time. Workforce management tools optimize staffing and scheduling decisions, reduce administrative effort, and deliver employee experiences designed to meet the needs of modern, distributed workforces. Real-time reporting and tools to evaluate customer interactions enable actionable feedback for improved service quality and performance. The platform reduces burden on IT resources with low-code and no-code tools for customization and personalization to ensure agility despite budget and resource constraints. For added flexibility, Talkdesk offers a BYOC (bring-your-own-carrier) option to ensure that current telephony infrastructure is not a barrier to cloud adoption and IT modernization. Features: - Voice Engagement: Route calls based on caller data, IVR selection, business hours, agent skills, and other out-of-the-box variables, or configure your own custom attributes, to optimize the caller experience. Leverage a full suite of call handling features, including click-to-call functionality. - Digital Engagement: Interact with customers on their preferred communication channel, including chat and SMS. - Orchestration & Routing: Orchestrate your customer's journey and experience with a visual routing designer that enables non-technical stakeholders to build IVR menus and flows using clicks, not code, and a powerful routing engine that gets your customers to the right resource the first time. - Connections: Quickly build custom integrations and actions between Talkdesk and third-party systems, for any systems that are not part of the Talkdesk out-of-the-box integrations library. - API Access: Fully documented APIs are available to connect and synchronize other apps (e.g., CRM, mobile app, etc.) with your contact center. - BYOC (bring-your-own-carrier): Gain the benefits of a leading cloud-native contact center platform while maintaining your existing telephony infrastructure and carrier relationships. - Agent Workspace: Surface customer data (including contact information, open tickets, - previous interactions) on a “single pane of glass” so agents know who’s contacting them and have the necessary context. Eliminate context-switching between applications to improve productivity and time to resolution. - Standard Reporting: Improve contact center agents’ performance with real-time and historical reporting on performance against SLAs and key metrics in a comprehensive set of out-of-the-box reports and dashboards. - Custom Reporting: Get a more granular and bespoke view of your contact center data with custom reports and dashboards. Use custom calculations to blend more than 900 values to define new measures and report on virtually any metric. - Quality Management: Evaluate contact center agent interactions, identify key areas of improvement, and provide agents with the actionable feedback they need to improve service delivery and customer satisfaction. Includes unlimited voice recording storage. - Workforce Management: Anticipate customer demand and plan and develop staff schedules more effectively with accurate, omnichannel forecasts based on historical and real-time data. |
||
V3 Cybersecurity, Inc. | Minerva / Minerva EDU | Enrolled | SaaS | Low | Jorge Conde-Berrocal | jorge.conde-berrocal@v3cybersecurity.com | Not Required | Cyber Risk Management Platform | ||||
CivicPlus | CivicPlus Agenda and Meeting Management Select | In Process | SaaS | Moderate | A-Lign | Jim Flynn | flynn@civicplus.com | StateRAMP Approvals Committee | Agenda and Meeting Management Select provides an end-to-end solution that enables municipal clerks to easily manage agendas, minutes, and public meetings, while providing the public with unparalleled transparency and access to the meeting process. | |||
Seattle Technology Group, Inc. | Iris Conference Platform | Progressing | SaaS | Low | Ryan Hamilton | ryan@seattletech.com | Not Required | Conference and Event Management Software for Higher-Education. | ||||
SOS Technologies | SmartSOS and EagleEye AI | Pending | PaaS | Moderate | Fortreum | Alex Pagoulatos | apagoulatos@sos-tech.com | SmartSOS is a threat detection and response platform that is designed to help organizations better prevent and respond to workplace violence. SmartSOS is the only product of its kind that eliminates the need for a 911 call reducing police dispatch times from 10 minutes to less than 10 seconds. | ||||
Trinity Education Group, Inc. | CMDS2 | Progressing | SaaS | Low | Vincent Lin | vincent@tegtech.io | Not Required | TEG's Content Delivery and Management System (CMDS) is a SaaS-based web software solution that allows states, districts, and agencies to deliver educational content with a simple standards-aligned online interface. | ||||
Samsara | Samsara's Connected Operations Cloud | In Process | SaaS | Moderate | SR24004 | Schellman & Company | Nick Hardy | nick.hardy@samsara.com | Samsara’s core competencies include vehicle telematics, driver safety dash cameras, asset tracking, mobile device management, and digital forms and workflows - all in an integrated, open, real-time, cloud platform. In addition to our core competencies, Samsara prides itself on its customer-centric feedback loop that enables continued, innovative, cost-effective ways to help our customers increase the efficiency, safety, and sustainability of their operations. | |||
Cyware | Cyber Fusion Center | In Process | SaaS | Moderate | SR23036 | Schellman & Company | Thomas Dolan | thomas.dolan@cyware.com | Cyware delivers a Cyber Fusion platform that unifies threat intelligence, automation, incident response, and vulnerability management with data insights gleaned from assets, users, malware, attackers, and vulnerabilities. Cyware’s Cyber Fusion platform integrates SOAR and TIP technology, enabling collaboration across siloed security teams. Cyware is widely deployed by enterprises, government agencies, and MSSPs while providing the threat intelligence-sharing and collaboration platform for most ISAC organizations globally. | |||
Jadu Inc | Jadu Digital Platform | Enrolled | SaaS | andy.perkins@jadu.net | Andy Perkins | Not Required | The Jadu Digital Platform is an enterprise-grade platform which includes website content management, intelligent online forms and customer relationship & case management capabilities. This brings together the best Jadu low-code technology to deliver an easy-to-use, accessible and mobile responsive experience for your online service users. Jadu Digital Platform provides you with simple-to-use, low-code, accessible administration tools, a robust approach to extensibility and a focus on integration. Easily create transactional services and manage digital customer journeys through data capture via a browser, touch screen or smartphone interfaces. |
|||||
SAP Concur | Concur Cloud For Public Sector | In Process | SaaS | Moderate | Schellman and Company | Richard Brumfield | r.brumfield@sap.com | *** | Concur Cloud for Public Sector is a multi-tenant government-community cloud environment that hosts SAP Concur’s extensive suite of travel and expense cloud solutions, hosted on AWS GovCloud Infrastructure. Concur Cloud for Public Sector is designed for the U.S. Public Sector, managed by SAP Concur personnel on U.S. soil, and ensures data security, confidentiality, and availability without compromising usability standards of travel and spend management solutions. SAP Concur U.S. soil requirements do not necessarily extend to external services leveraged by Concur Cloud for Public Sector. Customers can be federal, state, local, tribal, territorial, federally funded research centers (FFRDCs), contractors working on behalf of the government, or lab entities. Concur Cloud for Public Sector provides a comprehensive environment the complex processes of government travel and expense. Users are able access the Federal Travel Regulation (FTR) and the Joint Travel Regulation (JTR) compliant Concur Cloud applications via standard web browsers or on smartphone with our SAP Concur mobile app. Concur Cloud for Public Sector brings commercial functionality and scalability to government agencies while still meeting government-mandated security and regulatory needs. Website: https://www.concur.com/ |
|||
Anthology | Anthology Student | In Process | SaaS | Moderate | SR23069 | A-Lign | Michael Ball | michael.ball@anthology.com | Anthology Student is a cloud-based Student Information System (SIS) that enables institutions to manage the entire academic lifecycle of a student from Acceptance to Graduation, including financial aid, student accounts, career services, and a robust analytics repository for informed decision making. Anthology Student supports traditional, entrepreneurial, and online institutions, by managing the diversity of academic delivery and financial models. Program credentials can include badges, competencies, diplomas, certificates, or degrees. Anthology Student is a convenient and comprehensive platform built on Microsoft Azure. | |||
SAP National Security Systems | Commercial Regulated Environment (CIE) | Pending | SaaS, PaaS | Moderate | Forterum | Penny Klein | penny.klein@sapns2.com | StateRAMP Approvals Committee | SAP NS2 Commercial Regulated Environment (CRE) includes a suite of intelligent applications and experience management tools. Our intelligent suite includes applications for managing the operational transactions, HR and people management, analytics, and other innovative capabilities. The applications are integration-ready, include embedded intelligence, and offer a consistent and intuitive user interface. | |||
McAfee Enterprise | MVISION for Endpoint | In Process | SaaS | Moderate | SR21025 | Kratos | Patrick McEnany | patrick_mcenany@mcafee.com | McAfee MVISION for Endpoint is a SaaS offering that is deployed on AWS GovCloud IaaS. The SaaS offering is made up of a suite of solutions developed by McAfee. McAfee MVISION for Endpoint enables customers to centrally manage security for their organization while leveraging real-time monitoring and protection of the environment. Machine learning, artificial intelligence, and behavioral analysis are used to detect and respond to suspicious activity based on comparing observed activity to real-world adversarial attack techniques. | |||
Cloudera | CDP for Government | In Process | PaaS | Moderate | SR23020 | Coalfire | Natalia Belaya | nbelaya@cloudera.com | Cloudera for Government is a secure and governed cloud service platform that offers a broad set of enterprise data cloud services with data analytics and artificial intelligence functionality. With Cloudera for Government, users can create and manage secure data lakes, self-service analytics, and machine learning services without installing and managing the data platform software. Cloudera for Government services are managed by Cloudera, but the customer’s data remains under their control in their AWS cloud account. Cloudera for Government lets customers: • Control cloud costs by automatically spinning up workloads when needed, scaling them as the load changes over time, and suspending their operation when complete. • Isolate and control workloads based on user type, workload type, and workload priority. • Combat proliferating silos and centrally control customer and operational data across multi-cloud and hybrid environments. |
|||
Second Front Systems | Game Warden | In Process | SaaS | High | SR24024 | Schellman & Company | Mamie Cruse | mamie.cruse@secondfront.com | StateRAMP Approvals Committee | As a leading enabler for secure national security software, 2F’s Game Warden platform leverages cutting-edge technology to simplify and accelerate the integration of SaaS applications into government networks. By automating compliance and security processes, Game Warden ensures adherence to stringent standards, facilitating faster deployment and certification. The platform offers flexible, fully managed hosting options and seamless integration with CI/CD pipelines, along with built-in compliance with strict ATO requirements. Game Warden empowers mission owners with secure, efficient, and compliant SaaS solutions. | ||
Verkada | Verkada Cloud Platform | In Process | SaaS | Moderate | Fortreum | Jon Andersen | jon.andersen@verkada.com | The Verkada Command Platform is Verkada’s FedRAMP Ready government-grade offering designed to help government organizations and their partners take a proactive, simple, and scalable approach to physical security, alongside numerous security enhancements that are critical for certain government users. The system consists of the following key features: * Command in AWS GovCloud * Command Mobile Application * FIPS-validated Cameras * Verkada Guest Mobile Application |
Federal JAB Attestations
StateRAMP seeks to provide recognition to those products who have achieved a FedRAMP Authorization through Joint Authorization Board (JAB) approval. These products have undergone a rigorous audit and review from both a Third Party Assessment Organization (3PAO) and the FedRAMP JAB. StateRAMP wishes to highlight their efforts and provide an avenue for these products to be included in StateRAMP.
Company | Product Name | Security Status | Service Model | Impact Level | Ready Date | Authorization Date | Package ID | 3PAO | Point Of Contact | Contact Email | Sponsor Names | Service Description | Category |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
MIS Sciences Corporation | GovPoint Cloud Services | Federal JAB | SaaS, PaaS, IaaS | SecureIT | Jeff Willis | jeff@mis-sciences.com | Full suite of FedRAMP IaaS/PaaS/SaaS services including Calabrio Workforce Engagement Management |