Federal & State Lawfederalstatelaw.com
Home/Federal/Federal Register/2023-23839
Notice2023-23839

Request for Comments on Updated Guidance for Modernizing the Federal Risk Authorization Management Program (FedRAMP)

Primary source

Metadata and text below are from the Federal Register, a public-domain U.S. government work. Always verify the official published version before relying on it for any legal matter.

Published
October 27, 2023

Issuing agencies

Management and Budget Office

Abstract

The Office of Management and Budget (OMB) is seeking public comment on a proposed memorandum titled, Modernizing the Federal Risk Authorization Management Program (FedRAMP).

Full Text

<html>
<head>
<title>Federal Register, Volume 88 Issue 207 (Friday, October 27, 2023)</title>
</head>
<body><pre>
[Federal Register Volume 88, Number 207 (Friday, October 27, 2023)]
[Notices]
[Page 73878]
From the Federal Register Online via the Government Publishing Office [<a href="http://www.gpo.gov">www.gpo.gov</a>]
[FR Doc No: 2023-23839]


=======================================================================
-----------------------------------------------------------------------

OFFICE OF MANAGEMENT AND BUDGET


Request for Comments on Updated Guidance for Modernizing the 
Federal Risk Authorization Management Program (FedRAMP)

AGENCY: Office of Management and Budget.

ACTION: Notice of public comment period.

-----------------------------------------------------------------------

SUMMARY: The Office of Management and Budget (OMB) is seeking public 
comment on a proposed memorandum titled, Modernizing the Federal Risk 
Authorization Management Program (FedRAMP).

DATES: The public comment period begins on October 27, 2023, and ends 
November 27, 2023.

ADDRESSES: The proposed memorandum is available at <a href="https://www.cio.gov/policies-and-priorities/FedRAMP/">https://www.cio.gov/policies-and-priorities/FedRAMP/</a>.
    Submission of comments is voluntary. Please submit comments via 
<a href="https://www.regulations.gov">https://www.regulations.gov</a>, a Federal website that allows the public 
to find, review, and submit comments on documents that agencies have 
published in the Federal Register and that are open for comment. Simply 
type ``OMB-2023-0021'' in the search box, click ``Search,'' click the 
``Comment'' button underneath ``Request for Comments on Proposed 
Guidance for Modernizing the Federal Risk Authorization Management 
Program (FedRAMP),'' and follow the instructions for submitting 
comments. All comments received will be posted to <a href="https://www.regulations.gov">https://www.regulations.gov</a>, so commenters should not include information they 
do not wish to be posted (e.g., personal or confidential business 
information). Additionally, the OMB System of Records Notice, OMB 
Public Input System of Records, OMB/INPUT/01 includes a list of routine 
uses associated with the collection of this information.

FOR FURTHER INFORMATION CONTACT: Carol Bales, OMB, at 202.395.9915 or 
<a href="/cdn-cgi/l/email-protection#fc9f9e9d90998fbc93919ed299938cd29b938a"><span class="__cf_email__" data-cfemail="d6b5b4b7bab3a596b9bbb4f8b3b9a6f8b1b9a0">[email&#160;protected]</span></a> or Eric Mill, at 202.881.7182 or 
<a href="/cdn-cgi/l/email-protection#094c7b606a275b27446065654966646b276c6679276e667f"><span class="__cf_email__" data-cfemail="8bcef9e2e8a5d9a5c6e2e7e7cbe4e6e9a5eee4fba5ece4fd">[email&#160;protected]</span></a>.

SUPPLEMENTARY INFORMATION: The Office of Management and Budget (OMB) 
proposes to issue updated guidance to Federal agencies on the Federal 
Risk Authorization Management Program (FedRAMP). In December 2011, OMB 
issued Security Authorization of Information Systems in Cloud Computing 
Environments, establishing the Federal Risk Authorization Management 
Program to accelerate the secure adoption of cloud services. In 2022, 
recognizing the value that FedRAMP has provided to Federal agencies and 
to industry, Congress established FedRAMP in statute through the 
FedRAMP Authorization Act (``the Act''), 44 U.S.C. 3607-3616, as a 
program of the General Services Administration (GSA) that is overseen 
by a Board consisting of technology leaders drawn from Federal 
agencies.
    The Act further provides for OMB to issue guidance to define the 
categories of cloud products and services within the scope of the 
FedRAMP program and to describe additional responsibilities of the 
FedRAMP Program Management Office (PMO) and Board beyond those assigned 
by the Act. OMB also has a general responsibility under the Act to 
oversee the effectiveness of FedRAMP and to encourage consistency in 
agencies' adoption and use of secure cloud services.
    The proposed memorandum would support the Biden-Harris 
Administration's goals for modernizing Federal information technology 
and has been prepared by the Office of Management and Budget in 
consultation with key stakeholders.

Clare Martorana,
Federal Chief Information Officer, Office of the Federal Chief 
Information Officer, Office of Management Budget.
[FR Doc. 2023-23839 Filed 10-26-23; 8:45 am]
BILLING CODE 3110-05-P


</pre><script data-cfasync="false" src="/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js"></script></body>
</html>
View on FederalRegister.gov →Plain-text source
Indexed from Federal Register on October 27, 2023.

This is legal information, not legal advice. Laws vary by jurisdiction and change frequently. Always verify current law with official sources and consult a licensed attorney in your jurisdiction for advice on your specific situation.