Work together to provide a simple standardized approach to cybersecurity verification and validation.

A 501(c)6 nonprofit, StateRAMP (dba GovRAMP) levels the playing field for private-sector organizations serving the public sector and reduces hassles for public institutions with strict cybersecurity requirements.

Governments Can Procure and Secure More Efficiently and Confidently with GovRAMP

Diverse government standards and significant data sprawl through cloud service providers complicate today’s security environment, leaving governments less secure than ever amidst increasing cyber threats. GovRAMP lets governments trust but verify service provider products, making procurement more efficient and data more secure.

Service Providers Can Improve Security and Simplify Compliance with GovRAMP

Meeting the complex security standards and supplying (and resupplying) documentation required by various government partners can be confusing, time consuming, and costly. GovRAMP offers transferable credentials through standardized cybersecurity verification, allowing providers to verify once and serve many.

Webinar: Introducing Core Status

Join us May 28 at 2:30 pm ET to learn more about GovRAMP Core—our newest verified security status designed to bridge the gap between early-stage visibility and full authorization. We’ll walk through how Core works, who it’s for, and how it strengthens security and procurement outcomes for both providers and government buyers.

Learn, Connect, and Engage

May 28 at 2:30 pm - 3:30 pm

Webinar: Introducing Core Status

Join us for a live webinar to learn more about GovRAMP Core—our newest verified security status designed to bridge the gap between early-stage visibility and full authorization.

Introducing GovRAMP Core Status

Join us for a live webinar to learn more about GovRAMP Core—our newest verified security status designed to bridge the gap between early-stage visibility and full authorization. We’ll walk through how Core works, who it’s for, and how it strengthens security and procurement outcomes for both providers and government buyers.

Register now

June 20 at 2:00 pm - 3:00 pm

GovRAMP Working Group – Session 3

Join us for the third session of the GovRAMP Working Group, a collaborative forum designed to engage public and private sector members in shaping the future of secure cloud services.

Join us for the third session of the GovRAMP Working Group, a collaborative forum designed to engage public and private sector members in shaping the future of secure cloud services. This interactive session brings together service providers, assessors, government officials, and higher education stakeholders to share insights, raise challenges, and co-develop solutions that enhance the GovRAMP program’s impact.

Why Attend:

  • Collaborate directly with GovRAMP experts and fellow members
  • Contribute ideas to improve the authorization process
  • Learn about implementation best practices and operational pain points
  • Stay informed on evolving compliance strategies and program developments

The Goal:
This Working Group aims to surface actionable recommendations to streamline authorizations, strengthen trust, and promote innovation across the ecosystem of secure government cloud services.

Register Now:
Click here to register

Missed the Previous Sessions?
View all previous sessions.

October 2 - October 3

2025 GovRAMP Cyber Summit with presenting sponsor Carahsoft

Join us for the 2nd annual GovRAMP Cyber Summit with presenting sponsor Carahsoft, taking place October 2-3, 2025 at the J.W. Marriott Chicago. More details to come soon!

Join us for the 2nd annual GovRAMP Cyber Summit with presenting sponsor Carahsoft, taking place October 2-3, 2025 at the J.W. Marriott Chicago. More details to come soon!

Rev. 5 Updates – StateRAMP Office Hours

StateRAMP staff discusses the NIST 800-53 Rev 5 updates. This special Office Hours was an open forum for Service Providers, 3PAOs, State and local governments, and higher education institutions to ask questions to StateRAMP staff.

Rev. 5 Updates – StateRAMP Office Hours

This panel discussion explores the landscape of cybersecurity and third-party risk management.

Understanding StateRAMP’s Rev 5 Baseline Controls

Explore the latest updates to the StateRAMP Baseline Controls, incorporating NIST 800-53 Rev. 5. Learn how StateRAMP will align with the most current and comprehensive security guidelines for cloud cybersecurity.

Who We Are

As a 501(c)6 nonprofit, our mission is to promote cybersecurity best practices through education and policy development and improve the cyber posture of public institutions and the citizens they serve. We support the shared interests of state and local government entities, their prospective cloud service provider partners, and accredited third-party assessment organizations (3PAOs).