Here’s a headline from Cohesity Catalyst, our data security and management summit—Cohesity Cloud Services for Government earned “In Process” status on the FedRAMP Marketplace. This milestone advances the company one step closer to moderate authorization.
Cohesity Cloud Services is a portfolio of software as a service (SaaS) offerings that simplify data management and data security. The solution consolidates data in the cloud, breaks down data silos, and reduces infrastructure complexity, to increase agility and derive more value from data.
The “In-Process” designation serves as a formal notice that Cohesity is actively working towards FedRAMP Authorization and shows commitment to receive a FedRAMP Moderate Authority to Operate (ATO) in the months ahead.
As agencies move applications and data offsite to the cloud, a modern, agile approach to data backup and recovery is needed. With Cohesity Cloud Services, government agencies could utilize a fully-managed backup as a service (BaaS) that will run on AWS GovCloud. As such, it’s an attractive product for agencies that seek to offer a simple, efficient, and secure option to protect and manage data while improving cyber resilience as they move to the cloud.
Cohesity has helped thousands of organizations modernize how they secure and manage their data, including more than 200 federal agencies. Once we are certified, federal agencies and other organizations that require FedRAMP moderate authorization can consider Cohesity Cloud Services for the protection of their data against ransomware and other cyber threats.
FedRAMP stands for Federal Risk and Authorization Management Program. It’s a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud services. FedRAMP was created to provide a cost-effective, secure, and streamlined way for the government to manage the risks associated with using cloud services and to accelerate the adoption of secure cloud solutions.
For IT leaders in the public sector, FedRAMP is important because it helps ensure that cloud services used by the government meet the necessary security requirements. In fact, FedRAMP is mandatory for all federal agencies and their contractors that use cloud services.
The shift to the cloud is a generational change in how computing gets done. By using FedRAMP-authorized cloud services, IT leaders can have confidence that the cloud service providers they work with have gone through a rigorous security assessment process and have implemented the necessary security controls to protect sensitive government data. This can save IT leaders time and resources by reducing the need for redundant security assessments and evaluations, while also reducing the risk of security breaches and data loss.
To achieve this initial FedRAMP status, Cohesity Cloud Services for Government underwent a rigorous security assessment to ensure that it meets the necessary security requirements to handle sensitive government data. This process includes an audit of Cohesity’s security controls, policies, and procedures to ensure that they meet or exceed the government’s security standards.
To become FedRAMP authorized, Cohesity will follow the three steps below:
FedRAMP authorization means that our cloud services will be designed to meet the necessary security requirements to handle sensitive government data. This provides assurance to government agencies and other customers that the Cohesity Cloud Services for Government are secure and can be trusted to handle their data.
FedRAMP has become such a dominant approach to security and compliance that state agencies, local governments, and educational institutions require this designation as well. Learn how Cohesity has helped public sector organizations simplify their data security and management:
FedRAMP authorization can be important to enterprise IT leaders for the following reasons:
FedRAMP authorization may not be mandatory for private sector companies, but seeking this authorization for your data security and management solution can provide upside.
The FedRAMP authorization isn’t something awarded to vendors in perpetuity—far from it. This authorization requires regular audits to ensure that our platform and services are governed and controlled according to the FedRAMP requirements. By definition, FedRAMP authorization is an ongoing commitment. We look forward to achieving the next milestone of FedRAMP Moderate Authority to operate (ATO) in the months ahead.
This initial designation is the first major milestone for Cohesity on our journey to partner with the public sector to modernize data security and management. We invite you to join us and learn more:
- By Sanjay Poonen