Small business partners are critical for state and local government – no government can survive without the industry experience and background that small business leaders provide. StateRAMP understands, however, that developing and maintaining a strong cybersecurity posture can be difficult as a small business. With StateRAMP, small business leaders have an ally in the work to advance more secure public-private partnerships at the state and local levels.
Every business plays a role in securing our nation’s cybersecurity – no matter what size – and StateRAMP is excited to invite leaders from small and traditionally underutilized businesses to explore the ways StateRAMP can build paths to effectively serve government.
Ongoing Support: How Snapshot Helps Small Businesses
State and local governments are requiring their awarded vendors engage with StateRAMP as part of an ongoing effort to manage risk. However, governments cannot stop doing business while they wait for products to become StateRAMP Ready or Authorized, and there are also understandable concerns about the resource challenges small businesses may face in working towards a StateRAMP Ready, Provision, or Authorized security status.
The Security Snapshot Program provides a point-in-time gap analysis (like a cyber credit score) that helps identify high-level cyber risk exposure that provides an effective starting point for small businesses as they begin their cyber maturity journey.
In early 2023, StateRAMP launched the Progressing Security Snapshot Program. Any provider may procure a single Security Snapshot, or enroll in the StateRAMP Progressing Security Snapshot Program to receive quarterly Security Snapshots and participate in monthly consultative calls to improve their cybersecurity posture.
Learn more about the Security Snapshot Program
Frequently Asked Questions
StateRAMP’s Security Snapshot and Progressing Snapshot Program are a competition amplifier in the security space, by providing a low-cost, low-barrier entry point to security posture maturing for small businesses. We want to make sure that small businesses have an enhanced ability to compete on the security front while ensuring that state and local governments are able to balance the needed levels of confidentiality, integrity, and security for their critical data.
As we continue to improve opportunities for small businesses, we want to make sure your voice is heard. Through the Provider Leadership Council, we offer you a platform to share the challenges that you face and a means to foster partnerships with governments that result in productive conversations to address those challenges. The Provider Leadership Council promotes information sharing among public and private-sector members, providing expertise and advice to StateRAMP.
We are pleased to offer reduced dues for small businesses, ensuring that all businesses can access the value StateRAMP offers. Small businesses that meet our requirements will not experience any changes in their dues amount.
- For businesses with annual revenue of less than $1,000,000, annual dues will remain at $500 + processing fees.
- For businesses with annual revenue between $1,000,000 and $5,000,000, annual dues will be $1,000 + processing fees.
The cost for an individual Snapshot is $500 for businesses with less than $1M in revenue; $1000 for businesses with between $1-5M in revenue; and $1,500 for businesses with over $5M in revenue. Progressing Snapshot is similarly dependent on business revenue but is broken down: $250/month for businesses with less than $1M in revenue; $500/month for businesses with between $1-5M in revenue; and $1,000/month for businesses with revenue above $5M.
The updated fee schedule for the StateRAMP Security Snapshot can be found here.
With StateRAMP’s secure approach, your organization doesn’t have to repeat the unique assessment processes individual state and local governments mandate. Once you start the process, your product is listed publicly on the StateRAMP Authorized Product List with its current authorization level. While only the governments you serve will have access to your product’s continuous monitoring, anyone can view the Authorized Product List or Progressing Offerings and see your product.
- Become a StateRAMP Member.
- Enroll in the Progressing Snapshot Program.
- Complete initial Snapshot and begin monthly hour-long consultative calls with the PMO security team, which will educate on the gaps and provide guidance on how to address those gaps most efficiently.