Major cloud providers pitch FedRAMP as important to regulatory harmonization push, while acknowledging challenges

Three major cloud providers highlight the benefits and challenges of the General Services Administration’s FedRAMP program and potential uses in harmonizing cyber regulations, in response to a request for information from the Office of the National Cyber Director.

“We support ONCD’s proposal in the RFI to use FedRAMP as a model to emulate in its efforts to harmonize cybersecurity regulations,” Microsoft told ONCD in comments submitted on Oct. 31. Microsoft praises FedRAMP’s standards-based framework; “risk-based, outcome-focused approach”; continuous monitoring...