Templates
Information Security
FedRAMP Compliance Checklist
FedRAMP Compliance Checklist
📋

FedRAMP Compliance Checklist

1
Identify FedRAMP applicable systems within organization
2
Categorize information systems
3
Perform risk assessment
4
Implement necessary security controls
5
Develop System Security Plan (SSP)
6
Test Security controls
7
Approval: Security Testing Report
8
Create Plan of Action and Milestones (POA&M)
9
Request Initial assessment from Third Party Assessment Organization (3PAO)
10
Preparation for 3PAO assessment
11
Completion of security assessment
12
Approval: Security Assessment Report
13
Remediation of identified vulnerabilities
14
Approval: Vulnerability remediation
15
Prepare Authorization Package
16
Send package to Authorizing Official
17
Authorization by Authorizing Official
18
Implement Continuous Monitoring Plan
19
Submission of annual security assessment
20
Maintain FedRAMP status