Carson City, NV — March 2026 — The State of Nevada has announced its adoption of GovRAMP as the state’s standard framework for cloud security verification, reinforcing its commitment to protecting public data and creating consistent expectations for service providers.
Nevada will reduce duplicative agency-by-agency security reviews by leveraging GovRAMP’s standardized, evidence-based verification processes. The shift will also give vendors a predictable path forward and support a clearer, risk-based security approach across state government.
The updated requirements will go into effect July 1, 2026.
“GovRAMP gives Nevada a standardized way to verify a provider’s security controls up front — and then keep that assurance current through continuous monitoring,” said Timothy Galluzi, Nevada’s state chief information officer. “That means less duplication for agencies, a predictable path for vendors and a higher, more consistent level of protection for the information Nevadans trust us to handle.”
“Nevada’s leadership underscores the growing momentum toward consistent cybersecurity standards across government,” said Tony Sauerhoff, president of GovRAMP board of directors. “By adopting GovRAMP as its statewide standard, Nevada is advancing a collaborative model where security verification can be trusted, shared and continuously monitored across jurisdictions.”
GovRAMP provides a standardized approach to validating cloud security through independent assessment, continuous monitoring and shared security standards. Nevada joins a growing community of public-sector organizations working collectively to harmonize cybersecurity expectations and promote secure cloud adoption.
To support implementation, GovRAMP and the State of Nevada will host a series of webinars for vendors and stakeholders. These sessions will outline the updated state requirements, explain how GovRAMP security verification aligns with Nevada’s expectations and offer guidance ahead of the July 1 effective date.
For more information on Nevada’s adoption and upcoming educational events, visit the state’s program page.
About GovRAMP
GovRAMP is a nonprofit membership organization dedicated to advancing consistent, trusted cybersecurity practices across state, local, tribal, and educational government. Guided by its mission to make cybersecurity easier to understand, implement, and maintain, GovRAMP provides a standardized framework, independent validation, and community-driven education that help governments adopt secure cloud solutions with confidence while enabling service providers to demonstrate trusted security through clear, evidence-based practices. By bringing together public and private sector partners, GovRAMP supports policy collaboration, strengthens shared assurance, and helps build a more resilient cybersecurity ecosystem that protects government services, data, and the communities they serve. Learn more at GovRAMP.org.
About Nevada GTO
The Nevada Governor’s Technology Office (GTO) leads statewide government technology, coordinating shared governance and delivering reliable technology services that support state agencies and the public they serve. The office oversees statewide technology strategy and enterprise programs, including cloud investment review and related security governance activities.