Governments Can Procure and Secure More Efficiently and Confidently with GovRAMP
Diverse government standards and significant data sprawl through cloud service providers complicate today’s security environment, leaving governments less secure than ever amidst increasing cyber threats. GovRAMP lets governments trust but verify service provider products, making procurement more efficient and data more secure.
Service Providers Can Improve Security and Simplify Compliance with GovRAMP
Meeting the complex security standards and supplying (and resupplying) documentation required by various government partners can be confusing, time consuming, and costly. GovRAMP offers transferable credentials through standardized cybersecurity verification, allowing providers to verify once and serve many.
Progressing Snapshot Program Updates
Effective January 1, 2026
Beginning January 1, 2026, the GovRAMP Progressing Snapshot Program will introduce new requirements to ensure every product on the Progressing Product List is actively advancing toward a verified status.
Learn, Connect, and Engage
GovRAMP PMO Office Hours
Please join GovRAMP staff on the first Wednesday of every month from 2:30 pm – 3:00 pm Eastern for Office Hours! This is an open forum for Service Providers, 3PAOs, State and local governments, and higher education institutions.
Join the GovRAMP Program Management Office (PMO) for a live virtual session designed as an open forum to support your questions and engagement. Whether you are navigating the authorization process, preparing for assessments, or seeking clarity on GovRAMP requirements, this 30-minute session is an opportunity to connect directly with GovRAMP staff.
What to Expect:
- Open Q&A format
- No formal presentation
- Opportunity to engage with PMO team members live
- Questions may be submitted in advance
Submit Your Questions Ahead of Time: govramp.org/office-hours-questions
Join the Event: Click here to join the Microsoft Teams Meeting
GovRAMP AI Security Task Force – Review of Survey Results
AI Security Task Force members will review survey results and discuss final adjustments before advancing recommendations to GovRAMP governance bodies. Learn more and track progress here.
This meeting is open to AI Security Task Force members only.
The Task Force will review results from the 30-day member survey and discuss any final adjustments needed before recommendations are advanced for adoption by GovRAMP governance bodies.
Learn more about the Task Force and track its progress here.
GovRAMP Working Group – Session 6
Join us for the sixth GovRAMP Working Group session with Tony Sauerhoff (TX) and Ryan Murray (AZ) to discuss FedRAMP 20X, framework harmonization, and emerging priorities in secure cloud services.
Join us for the sixth session of the GovRAMP Working Group, a collaborative forum designed to engage public and private sector members in shaping the future of secure cloud services.
This session will begin with key updates from GovRAMP, followed by a discussion with our guest speakers, Tony Sauerhoff (Chief AI & Innovation Officer, Texas) and Ryan Murray (CISO, Arizona), who will share their perspectives on critical priorities such as FedRAMP 20X, framework harmonization, and other emerging challenges.
Register Now:
Click here to register
Missed the Previous Sessions?
View all previous sessions.
Rev. 5 Updates – StateRAMP Office Hours
StateRAMP staff discusses the NIST 800-53 Rev 5 updates. This special Office Hours was an open forum for Service Providers, 3PAOs, State and local governments, and higher education institutions to ask questions to StateRAMP staff.
Rev. 5 Updates – StateRAMP Office Hours
This panel discussion explores the landscape of cybersecurity and third-party risk management.
Understanding StateRAMP’s Rev 5 Baseline Controls
Explore the latest updates to the StateRAMP Baseline Controls, incorporating NIST 800-53 Rev. 5. Learn how StateRAMP will align with the most current and comprehensive security guidelines for cloud cybersecurity.
Who We Are
As a 501(c)6 nonprofit, our mission is to promote cybersecurity best practices through education and policy development and improve the cyber posture of public institutions and the citizens they serve. We support the shared interests of state and local government entities, their prospective cloud service provider partners, and accredited third-party assessment organizations (3PAOs).