“I’d like to personally thank the SBA’s Branch Chief for Security Policy & Compliance and Office of the Chief Information Officer, and those members of the FedRAMP PMO who supported our interesting use case. It has been our mission to help the small business community that is America's economic engine, and we are looking forward to doing great things together.” said Michael Peters, CEO of Continuum GRC.
The United States Small Business Administration (SBA) partnered with Continuum GRC for FedRAMP Authorization following an extensive period of evaluation of our tool. Their interest was how the tool scaled GRC capabilities to not only the SBA’s internal requirements, but also to the multitude of America’s small businesses they supported.
Cybersecurity is all over the news. With the SolarWinds and Colonial Pipelines hack, we’ve learned the hard way that critical infrastructure is something we cannot take for granted. That’s why it is so important that IT providers understand why compliance frameworks like FedRAMP are necessary.
Is FedRAMP compliance mandatory? Yes. If you provide cloud services to a federal agency, you must earn your FedRAMP ATO. However, instead of seeing this as another hoop to jump through, take the time to better understand why this is so critical for national security and how it can be a huge benefit to your company overall.