StateRAMP

Introducing Siddique C., an advisor on our Standards & Technical Committee and Sr. Manager, Global Public Sector Compliance at Snowflake The Standards & Technical Committee plays a vital role in shaping StateRAMP’s standards and ensuring alignment with evolving cybersecurity frameworks to protect state and local government agencies. As Siddique shares, "Working with the Committee has been incredibly rewarding. Leaders within the compliance space put their heads together to make processes easier, quicker, and more comprehensive. The opportunity to contribute, especially through efforts like the CJIS Task Force, has been invaluable." Learn more about Siddique’s journey and insights below. https://hubs.li/Q02YqNxy0 #Cybersecurity #Compliance #FrameworkHarmonization

In cybersecurity, true protection means going beyond the checklist. #FraudAwarenessWeek highlights the importance of vendor compliance as more than a box to tick—it's essential for building trust, managing risk, and safeguarding data. As our Executive Director, Leah McGrath shared in a recent webinar with RAMPxchange “StateRAMP requirements aren’t just about compliance—they’re about helping drive better security outcomes.” Partnerships with organizations like RAMPxchange help agencies find trusted vendors and reinforce a commitment to meaningful security. Learn more about vendor compliance and how StateRAMP member benefits can help: https://hubs.li/Q02YWJsW0 #VendorCompliance #Cybersecurity #RiskManagement

Compliance is more than a checkbox—especially in vendor relationships. As government agencies strengthen their digital defenses, verifying vendor compliance has become crucial in preventing supply chain attacks and protecting citizen data. To kick off #FraudAwarenessWeek, our latest blog, The Role of Compliance in Vendor Vetting: Why It’s More Than a Checkbox, explores how frameworks like NIST help agencies simplify vendor risk management while supporting vendors in meeting essential cybersecurity standards. Read our blog to learn how robust compliance practices can build safer, more trusted partnerships across the public sector. https://hubs.li/Q02YHXRN0 #FraudAwarenessWeek #VendorCompliance #Cybersecurity

At our 2024 StateRAMP Cyber Summit, a key takeaway on vendor risk management emerged: reducing fraud risks requires collaboration with organizations like StateRAMP and, importantly, with third-party suppliers and vendors themselves. Shifting from a vendor relationship to a partnership mindset means sharing responsibility for security. More vendors now understand the significance of rigorous due diligence—supporting government agencies in identifying risks before they become threats. The fight against vendor fraud and risk begins with proactive, ongoing compliance. By making compliance a core part of cybersecurity strategy, we protect sensitive data and maintain public trust. Together, we can create a more secure digital landscape. Watch more about what Josh Kadrmas, Cyber Risk Analyst Team Lead with the State of North Dakota, has to say about vendor partnerships here: https://hubs.li/Q02YqJrq0 #FraudAwarenessWeek #VendorRiskManagement #Cybersecurity

At the 2024 StateRAMP Cyber Summit, Jaime Schorr National Association of State Procurement Officials' Chief Cooperative Procurement Officer, shared her insights on the role of procurement in cybersecurity, reflecting on how the introduction of StateRAMP addressed the critical need for a standardized vendor cybersecurity approach in public procurement. “StateRAMP’s model provides a path for public entities to monitor vendor compliance effectively, supporting efforts to build security into contracts from the start,” Jaime explained. Her interview with Federal News Network further explores the unique challenges smaller companies face in cybersecurity compliance and how StateRAMP is helping make adherence accessible across sectors. Catch the full interview with Federal News Network for more of Jaime’s perspective: https://hubs.li/Q02Yd6KV0 #Cybersecurity #Procurement #VendorCompliance

We’re excited that Jessica Van Eerde, our Chief of Operations, is attending the Fusion Learning Partners GOVIT Leadership Summit & Symposium! This event is a great opportunity to collaborate with industry leaders and advance conversations on secure digital services. If you're attending, be sure to connect with Jessica! Register now: https://hubs.li/Q02WrcxF0 #GOVIT #Cybersecurity #Collaboration

This month, we’re featuring Donoma Software, a leader in secure, innovative communication and data solutions. Through their StateRAMP membership, Donoma Software strengthens their credibility with customers and partners by aligning with the rigorous cybersecurity standards required to support government agencies. Their certification highlights Donoma Software’s dedication to secure solutions that align with cybersecurity best practices. Join us in recognizing their efforts to advance security and compliance in the public sector. Read more about Donoma Software below: https://hubs.li/Q02W-N6Z0 #MemberSpotlight #StateRAMPMembership #Cybersecurity

Federal News Network sat down with Ben Caruso, Field CTO at Juniper Networks, during the 2024 StateRAMP Cyber Summit! Ben shared how regulatory harmonization helps both public and private sectors streamline cybersecurity efforts: "StateRAMP relieves stress for both the public and private sectors by providing a consistent framework that drives better cybersecurity." Ben also discussed the importance of collaboration across states and sectors—and we got to meet Patrick, Juniper’s therapy dog, who brought smiles to everyone at the event. Watch the full interview: https://hubs.li/Q02Wrrxb0 #FrameworkHarmonization #Cybersecurity #StateandLocalGovernment

Building strong relationships between state and local governments and their vendors is essential for effective cybersecurity. In the Whole of State session from the 2024 StateRAMP Cyber Summit, sponsored by Amazon Web Services (AWS) and CrowdStrike, Robert Siple (MS-CIA, CCISO, CISA, CISM), Security Assurance Specialist and US-SLED Lead at AWS, discusses the importance of collaboration in achieving digitalization goals. Robert emphasizes that it's not just about digitizing existing processes; it's about rethinking the problems we aim to solve. He highlights the critical role that vendors play in engaging with state programs like StateRAMP and participating in advisory boards to ensure that cloud services are effectively implemented at scale. How can organizations ensure their vendors are aligned with their cybersecurity goals? Robert shares insights on fostering partnerships that support innovation while maintaining local control. Thank you to AWS and CrowdStrike for their valuable support at the StateRAMP Cyber Summit. Watch the video to hear his perspectives on enhancing vendor relationships for better cybersecurity outcomes: https://hubs.li/Q02W-spN0 #Cybersecurity #DigitalTransformation #VendorManagement

StateRAMP is excited to be attending the TechPoint Secure Connect Summit at Knowledge Services! Visit our table outside the auditorium to learn more about our efforts to bring cloud security to state and local governments. We look forward to connecting with industry professionals and advancing secure digital transformation. #CyberSummit #PublicSectorCybersecurity