Federal Risk and Authorization Management Program
US government program for standardized security assessment of cloud services used by federal agencies.
Overview
FedRAMP (Federal Risk and Authorization Management Program) provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services used by US federal agencies. Built on NIST 800-53 controls, FedRAMP defines three impact levels (Low, Moderate, High) with increasing security requirements. Authorization enables cloud providers to serve any federal agency, creating a "do once, use many" approach that reduces redundant security assessments.
Published by
General Services Administration
TrueConfig Control Mappings
TrueConfig maps 54 security controls to FedRAMP requirements, helping you demonstrate compliance and identify gaps.
18
critical
21
high
12
medium
3
low
Identity & Authentication
5 controls
Privileged Access
8 controls
Conditional Access
12 controls
Workload Identity & Applications
8 controls
Guest & External Access
7 controls
Governance & Hygiene
6 controls
Logging & Visibility
5 controls
License Management
1 controls
Data Protection
2 controls
Who Needs FedRAMP?
Target Industries
Audience Types
Frequently Asked Questions
What is Federal Risk and Authorization Management Program?▼
How does TrueConfig help with FedRAMP compliance?▼
Who needs to comply with FedRAMP?▼
Can I get FedRAMP certification?▼
What are the key benefits of FedRAMP compliance?▼
Related Frameworks
CIS Benchmark
Industry-standard security configuration guide for Microsoft 365 developed by the Center for Internet Security.
53 controls →
NIST 800-53
Comprehensive security and privacy controls catalog from the National Institute of Standards and Technology.
54 controls →
Zero Trust
Microsoft's security model based on "never trust, always verify" principles for identity, devices, and data.
53 controls →
Automate FedRAMP Compliance
TrueConfig continuously monitors your Microsoft 365 tenant against FedRAMP requirements and helps you remediate deviations automatically.
Start Free Trial