Chapter 9 – The FedRAMP cloud computing security requirements

This chapter gives an overview of the Federal Risk and Authorization Management Program (FedRAMP) security control selection process. The FedRAMP security control requirements are discussed in detail. Specific topics include role and responsibilities, policies and procedures, and the harmonization governance process for the continual review and updates. Finally, a detailed catalog of the FedRAMP security control baseline is provided as a reference.