FedRAMP Moderate

URI: https://gptkb.org/entity/FedRAMP_Moderate
GPTKB entity
Statements (37)
Predicate Object
gptkbp:instanceOf gptkb:FedRAMP_security_baseline
gptkbp:appliesTo cloud service providers
gptkbp:basedOn gptkb:NIST_SP_800-53
gptkbp:complianceLevel moderate
gptkbp:documentation gptkb:Plan_of_Action_and_Milestones_(POA&M)
gptkb:Security_Assessment_Plan_(SAP)
gptkb:Security_Assessment_Report_(SAR)
gptkb:System_Security_Plan_(SSP)
https://www.w3.org/2000/01/rdf-schema#label FedRAMP Moderate
gptkbp:lowerAward gptkb:FedRAMP_High
gptkbp:numberOfControls 325
gptkbp:partOf gptkb:FedRAMP
gptkbp:protectedBy gptkb:Controlled_Unclassified_Information
gptkbp:publishedBy gptkb:U.S._General_Services_Administration
gptkbp:rank gptkb:FedRAMP_Low
gptkbp:requires personnel security
configuration management
risk assessment
access control
contingency planning
continuous monitoring
incident response procedures
security training
media protection
annual security assessment
audit and accountability
authorization to operate (ATO)
physical and environmental protection
system and communications protection
system and information integrity
third-party assessment organization (3PAO) review
federal agencies using cloud services with moderate impact data
gptkbp:securityImpactLevel Moderate
gptkbp:usedBy cloud service providers seeking federal contracts
gptkbp:usedFor cloud service authorization
gptkbp:bfsParent gptkb:cloud.gov
gptkbp:bfsLayer 6