To the Cloud! The Cloudy Role of FedRAMP in IT Modernization, Hearing Before the Subcommittee on Government Operations of the Committee on Oversight and Reform, House of Representatives, One Hundred Sixteenth Congress, First Session, July 17, 2019 [open pdf - 319KB]
This is the July 17, 2019 hearing on "To the Cloud! The Cloudy Role of FedRAMP in IT [information technology] Modernization," held before the U.S. House Subcommittee on Government Operations of the Committee on Oversight and Reform. From the Opening Statement of Gerald E. Connolly: "The subcommittee is convening regarding the role of FedRAMP in IT modernization, with the intention to introduce legislation to codify the program. [...] The Federal Risk and Authorization Management Program, known as FedRAMP, was established in 2011 to provide a standardized governmentwide approach to security assessment authorization and continuous monitoring of cloud computing services. [...] Recognizing the potential of cloud computing, the previous administration established FedRAMP with the goals of reducing duplicative efforts, inconsistencies, and cost inefficiencies with the security authorization process; establishing a private-public partnership to promote innovation and the advancement of more secure information technologies; using an agile and flexible framework that will enable the Federal Government to accelerate the adoption of cloud computing; creating transparent standards and processes for security authorizations; and allowing agencies to leverage security authorizations on a governmentwide scale. [...] What was supposed to be an expedited process, six months, may be costing a quarter of a million dollars, instead, in many cases, took years and takes years and can cost companies millions of dollars, the very opposite of what FedRAMP was designed to achieve." Statements, letters, and materials submitted for the record include those of the following: Anil Cheriyan, Jack Wilmer, Joseph Klimavicz, Jose Arrieta, Douglas Barbin, Jonathan Berroya, Will Ackerly, and Lynn Martin.
Serial No. 116-48
U. S. Government Publishing Office: http://www.gpo.gov/