Learn About Our Assessors’ Role in StateRAMP
StateRAMP wouldn’t be possible without the independent audits performed by A2LA-accredited 3PAOs. To obtain their StateRAMP security status, service providers partner with 3PAOs to complete independent evaluations of their products and service offerings at a security baseline equivalent to those established by the FedRAMP program. Learn more about assessors’ role and the 3PAO accreditation process in our guide, “Third-Party Assessment Organizations: Standards, Accreditation, and StateRAMP Approval.”
Achieve and Maintain StateRAMP Status with Confidence
For initial and annual assessments, Cloud Service Providers (CSPs) and 3PAOs can use the StateRAMP Authorization Annual Assessment Controls Selection Workbook to assist with the selection and tracking of NIST 800-53 Revision 5 controls. This powerful tool is designed to help maintain or gain StateRAMP Provisionally Authorized or Authorized status with greater efficiency and clarity.
Empower your team to stay ahead in compliance, address emerging risks, and ensure your StateRAMP status is always in good standing.
Our 3PAO List is Growing
Third-party assessment organizations provide the independent findings and security statuses associated with the service provider member profiles featured within the StateRAMP Authorized Product List.
As certified independent assessors, 3PAOs are charged with performing initial and periodic assessments of service providers’ products and solutions to ensure they meet the StateRAMP security standards required by state and local governments.
StateRAMP Third Party Assessor Membership Tiers
Explore StateRAMP’s membership options tailored specifically to Third Party Assessment Organizations (3PAOs). While you can still maintain your status as a StateRAMP 3PAO, engaging in the full spectrum of membership benefits—including active participation in committees—will now require membership. Join our community to enhance your visibility, develop collaborative partnerships, and access exclusive resources tailored to elevate your influence in cybersecurity.
Prime
Basic Membership benefits, plus:
- Two (2) Member Rates for Annual Summit
- Access to RAMPxchange (No additional fees)
- Bi-Annual Call with StateRAMP Executive Staff
Premier
Basic and Prime Membership benefits, plus:
- Four (4) Member Rates for Annual Summit
- Social Media Spotlight / Blog Panelist Feature
- Invitation to Special Roundtable Available for Government Members and Premier and Champion-level Provider Members
- Receive First-Right-of-Refusal for Event Sponsorships
- Special Listing on Website
- Limited to 25 active memberships
Champion
Basic, Prime, and Premier Membership benefits, plus:
- Six (6) Member Rates for Annual Summit
- Guest Speaker, as part of a Bi-Annual Virtual Education Series
- 1:1 Monthly Call with StateRAMP Executive Director
- Limited to five active memberships
StateRAMP 3PAO Members
The following 3PAO partners have registered with StateRAMP to help deliver on our shared mission of standardizing third-party cybersecurity verifications for the public sector. As of June 1, 2024, only Third Party Assessment Organizations that have signed up for a StateRAMP Prime, Premier, or Champion 3PAO membership will continue to be publicly listed as a StateRAMP-Registered Assessor.
