StateRAMP Controls Matrix
Vulnerability Deviation Request Form
When a service provider identifies a vulnerability that potentially warrants different handling than normally required by GovRAMP, they may submit a deviation request to GovRAMP using this form.
Ready Minimum Mandatory Requirements for Moderate and High Impact Levels
To achieve Ready Status for Moderate/High Impact levels, a service provider must meet the minimum mandatory requirements outlined in this document. (Rev. 5)