FedRAMP Archives

food stamp fraud, Geofence, warrant, enforcement, DOJ AI crime

Knowing What You Know – New OMB Regulations Require New Logging and Action

Mark Rasch | June 10, 2026 | cisa, continuous event monitoring, cybersecurity logging, data retention, federal contractors, FedRAMP, Incident Response, Legal Liability, network visibility, OMB Memorandum M-26-14, risk-based compliance, Security Operations Center, Threat Hunting

OMB Memorandum M-26-14 mandates a risk-based approach to federal cybersecurity logging and network visibility, creating strict operational deadlines and potential legal liabilities for agencies and contractors who fail to act on log ...

Security Boulevard

Navigating the Frontier of Shadow AI

Michael Peters | May 28, 2026 | AI, Awareness, CMMC, FedRAMP, , NIST, shadow IT

Employees across every department are experimenting with generative AI tools to write emails, analyze data, summarize documents, and debug code. According to IBM’s 2025 Cost of a Data Breach Report, one in ...

MichaelPeters.org

The Old FedRAMP Playbook is Dead: Enter Automated Provenance

teamanchore | May 26, 2026 | Blog, FedRAMP

The post The Old FedRAMP Playbook is Dead: Enter Automated Provenance appeared first on Anchore.If you’ve been in the security and compliance universe for the last few decades, you know historically FedRAMP ...

Anchore

Hands holding a tablet, in front of which there is an abstract wheel with symbols related to digital technology and security.

Using Your MSP to FedRAMP Authorization Time Through Control Inheritance

Michael Peters | May 21, 2026 | audit and compliance, Awareness, FedRAMP, frameworks, MSP

A FedRAMP Moderate baseline, now classified as Class C under the updated FedRAMP 20x framework, requires documentation and validation of over 300 controls–not an insignificant number, regardless of the enterprise. Modern IT, ...

MichaelPeters.org

Lazarus Alliance proactive cybersecurity, accreditation, and GovRAMP assessment services.

Using FedRAMP To Fast Track Your GovRAMP Market Entry

Michael Peters | May 21, 2026 | audit compliance, Awareness, FedRAMP, GovRamp, StateRAMP

The barrier between federal and state cloud procurement has effectively dissolved for authorized providers. With StateRAMP’s rebranding to GovRAMP and the FedRAMP RFC-0024 mandate for authorization packages, the opportunity to pursue a ...

MichaelPeters.org

FedRAMP image compact. Authorized 2025 cloud solutions.

Navigating FedRAMP’s Move to Certification Classes

Michael Peters | April 29, 2026 | Awareness, FedRAMP, FedRAMP 20x, FedRAMP impact levels, frameworks

Anchored by the FedRAMP Authorization Act and OMB Memo M-24-15, FedRAMP is undergoing a major change that affects virtually every aspect of how cloud service providers pursue, achieve, and maintain federal authorization ...

MichaelPeters.org

FedRAMP’s June 2026 Rule Overhaul: CR26 Explained

Dan Page | April 24, 2026 | FedRAMP

The first quarter of 2026 is behind us, and that means the next wave of rules, program phases, and other shifts in governmental policy are starting to take effect. One that you ...

Ignyte

The Old Way ATO And P ATO Authorization Paths

FedRAMP Leveraged vs Agency ATO Authorization Paths

Max Aulakh | April 17, 2026 | FedRAMP

FedRAMP is the information security framework used by the United States government, and it’s required for any cloud service provider hoping to work with the government in a way that handles sensitive ...

Ignyte

A digital cloud on an abstract tech background and floating over building wireframes.

FedRAMP Ready, Class A Certification, and Breaking Into the Federal Market

Michael Peters | April 2, 2026 | audit compliance, Awareness, Class A, FedRAMP, FedRAMP 20x, FedRAMP Ready

The updates and expansion of FedRAMP make a few things clear, the most significant of which is that government agencies are counting on cloud tools to help them do their work. But ...

MichaelPeters.org

a digital blue and black padlock in a circle that looks like a CPU and motherboard.

FedRAMP and the Data Broker Loophole

Michael Peters | March 25, 2026 | Awareness, Compliance, Data Privacy, FedRAMP

A new congressional report recommending a FedRAMP-style framework for commercial data brokers has reignited a long-running debate in Washington: whether federal agencies should be able to buy sensitive personal data on the ...

MichaelPeters.org

FedRAMP

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On