GSA recently announced the launch of the FedRAMP Tailored Baseline for Cloud Service Providers with Low Impact Software-as-a-Service systems. FedRAMP Tailored aims to support solutions that have low risk and low costs for agencies. This means a streamlined process for a variety of applications. Tailored also standardizes an approach to determine risks associated with cloud applications and provides the government with the freedom to use the cloud while maintaining security.
FedRAMP tailored was open for comment in January and July of 2017. The program provides base security control requirements for industry to meet. Agency authorizing officials are responsible for adding controls where necessary for compliance. GSA believes “The FedRAMP program, including our goals for Tailored, is a key part of issuing an informed, risk-based authority to operate.”
For more information, see the FedRAMP Tailored website.