FedRAMP Cybersecurity Controls



IT Security Policies & Standards for FedRAMP Compliance

The Federal Risk and Authorization Management Program (FedRAMP) is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services.

The FedRAMP security controls comes from the NIST 800-53 control framework. Since the NIST-based Written Information Security Program (WISP) is built on NIST 800-53 rev 4, we've done the heavy lifting for you. The WISP is built to address MODERATE baseline controls from Appendix D of NIST 800-53 rev4.

Our Written Information Security Program (WISP) is designed to allow organizations to comply with the FedRAMP documentation requirements. The WISP maps the NIST 800-53 rev 4 controls directly to standards and policies so that you can easily integrate business-as-usual operations to meet FedRAMP requirements.




Sort by:

Sign up for our Newsletter!