Excentium today has joined the State Risk and Authorization Management Program (StateRAMP) as an accredited 3rd-party assessor (3PAO). StateRAMP requires the same accreditation as the FedRAMP through A2LA. StateRAMP is an independent, not-for-profit, public-private partnership providing an efficient and cost-effective solution for verifying the cybersecurity profile of service providers on behalf of state and local governments. StateRAMP’s purpose is (1) to help state and local government protect citizen data; (2) save taxpayer and service provider dollars with a “verify once, serve many” model; (3) to lessen the burdens on Government; and (4) promote education and best practices in cybersecurity among those it serves in industry and the government communities. StateRAMP’s security verification model is based on the National Institute of Standards and Technology (NIST) publication800-53 Rev. 4—the same publication the Federal Government used to develop the Federal Risk and Authorization Management Program(FedRAMP), a similar cybersecurity program for federal entities.
For more information on the StateRAMP program, see www.stateramp.org.