What is FedRAMP and Why It Matters hero graphic

What is FedRAMP and Why It Matters

Jun 8, 2023 by Armory

What’s FedRAMP?

Federal Risk and Authorization Management Program (FedRAMP) is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services. FedRAMP is important since it’s the gold standard for assessing cloud service providers (CSP) within the government. Under this program, authorized FedRAMP cloud service providers can provide services for US government agencies. 


FedRAMP Provides Service to Three Categories of Partners:

Accelerating FedRAMP Compliance

When it comes to the development and deployment of cloud products and services, FedRAMP compliance scrutinizes the software development lifecycle. Today, developers are stuck with highly manual, error-prone, and resource intensive processes that don’t meet the FedRAMP requirements. 

The following factors are common blockers of FedRAMP compliance:

With Spinnaker, you can automate the software delivery process and streamline what was previously highly manual, resource intensive, and error-prone.

How Spinnaker and Armory Accelerate FedRAMP Compliance

Today’s tooling falls short in addressing the various controls to both achieve and maintain FedRAMP compliance over time.

Spinnaker, the open source, multi-cloud, continuous delivery platform, coupled with Armory’s security and compliance plugins, can help you deploy software changes to production quickly, safely, and automatically. 

Spinnaker supports FedRAMP compliance by streamlining the software delivery process. 

With Spinnaker you can:

For a detailed case study of Spinnaker in action, go to: How Lookout Leveraged Spinnaker for FedRAMP Compliance.

Recently Published Posts

Spinnaker Tips: Setting a github status check on a PR from a pipeline

Oct 12, 2023

A common situation we hit is creating a pull request on github with some terraform changes that are run through our pipelines. We’d like to verify the terraform changes cleanly “plan” before we apply them. An example is when someone has a typo (how many times I’ve left dangling commas in a JSON object!) and […]

Read more

Introducing Pipelines-as-Code Plugin for Open Source Spinnaker

Jul 21, 2023

Easily Scale and Automate with Version Control in Git Developers choose best-of-breed version control systems like GitHub for a reason: they need the ability to collaborate and improve code together.  But a broken Spinnaker deployment pipeline can often be the last thing standing in the way of getting your application to market.  Until now. Armory’s […]

Read more

New Spinnaker Operator Updates Now available for the Spinnaker Community

Mar 15, 2023

Stay up-to-date with the latest Kubernetes release with Spinnaker. The Armory crew has worked diligently the past several weeks to release a new stable version of OSS Operator (1.3.0). This is the first release in just over 18 months and is now available for the open source community.  What Changed? The Spinnaker Operator is the […]

Read more