The Federal Risk and Authorization Management Program (FedRAMP) is a United States federal program that standardizes the security assessment, authorization, and continuous monitoring of cloud services used by federal agencies. It was developed in response to the growing use of cloud technologies across the government and the need to ensure that cloud service providers meet the security requirements outlined in the Federal Information Security Management Act (FISMA).
For maintenance management purposes, FedRAMP authorization is required in order for federal agencies – or the contractors and vendors that store and process federal data – to use cloud-based software such as CMMS. Importantly, it is the responsibility of the CMMS vendor to obtain and maintain FedRAMP compliance.
<< Back to Maintenance Glossary