FedRAMP Acceleration & Automation Pack (FAAP)
Zevante enables organizations to achieve FedRAMP compliance quicker with our FedRAMP Acceleration & Automation Pack (FAAP).
FedRAMP Compliance Program
FedRAMP (Federal Risk and Authorization Management Program) is a government wide security compliance program that sets a baseline for cloud products and services regarding their approach to authorization, security assessment, and continuous monitoring. All CSPs (cloud service providers) and CSOs (cloud service offering) that are part of the government supply chain, including but not limited to the Department of Defense and Defense Industrial Base, must obtain this certification.
How Can We Help You?
FedRAMP compliance can be challenging, expensive, and time-consuming. That’s where Zevante comes in. Zevante’s FedRAMP Automation Accelerator Pack (FAAP) helps companies achieve FedRAMP compliance faster and in a more efficient manner through tested, well-defined, and automated controls and protocols. FAAP is a cloud native automation solution that does not rely on open-source software or third-party services. With minimal reliance on other products, FAAP is cloud native for Azure Government and AWS GovCloud, enabling faster, automated deployments with inherited controls.
Azure FAAP Services – FedRAMP Moderate Build
Zevante’s cloud security team leverages Azure native policies, blueprints, SCCA and pre-approved, accelerated cloud engineering reference architectures to accelerate compliance deployment when onboarding customers.
Preconfigured architectures incorporate multiple Azure services, allowing us to deliver a FedRAMP Moderate baseline service.
For example, we utilize Microsoft Sentinel for security monitoring and Microsoft Defender for cloud for all scanning to harden cloud security posture management.
We use additional solutions like Azure Active Directory with conditional access and Azure firewalls for boundary protection.
Our team can deploy hardened CIS Level 1 operation systems, docker containers and set-up scanning and ticketing infrastructure when necessary.
We also offer continuous maintenance of security controls and POA&M management to FedRAMP PMO and agency stakeholders.
Azure FAAP Services – DoD Impact Level (IL) 4 / 5 Build
Zevante Cloud Security team leverages DISA STIG requirements to build an Azure specific architecture designed to meet DOD Requirements.
In 2017, the Defense Information System Agency (DISA) published the Secure Cloud Computing Architecture (SCCA) Functional Requirements Document (FRD) in which it is described how mission owners must secure cloud applications at the connection boundary.
All DoD entities that connect to the commercial cloud must follow the guidelines set forth in the SCCA FRD.
To meet this requirement, Zevante utilizes our pre-built, automated, and secure deployments which have been hardened to meet DISA STIG and other requirements with four core components:
- Boundary Cloud Access Point (BCAP)
- Virtual Datacenter Security Stack (VDSS)
- Virtual Datacenter Managed Services (VDMS)
- Trusted Cloud Credential Manager (TCCM)
Our solution leverages Microsoft and Azure technologies to help customers meet the SCCA requirements for both DoD IL4 and DoD IL5 workloads that run in Azure.
This Azure-specific solution is called the Secure Azure Computing Architecture (SACA), and it can help customers comply with the SCCA FRD.
It enables DoD customers, allowing them to move workloads into Azure after they are connected.
Our FedRAMP gap assessments and remediation analysis engagements help organizations meet the stringent requirements of security control compliance.
Boundary & Architecture Review
Zevante’s security assessment is focused on boundary definition and architecture.
We help organizations describe system boundary and data flows throughout their security environments and infrastructure.
FedRAMP Documentation
Our experienced FedRAMP security analysts enable organizations seeking FedRAMP compliance by offering tested and pre-defined FedRAMP templates and documents, aiding in the documentation process.
Technical Remediation Assistance
To enable faster compliance, we assist customers with remediating technical deficiencies in the most efficient and cost-effective manner.
Continuous Monitoring
Zevante understands the nuances associated with developing an effective continuous monitoring program that requires ongoing security status reporting, thus we offer our FedRAMP clients an extension to their own inhouse cybersecurity team with our SOC as a service solution.