Skyhigh Networks, a cloud service vendor that provides software to monitor cloud usage, has earned an authority to operate from the Federal Risk and Authorization Management Program.
The Campbell, California based company becomes only the second cloud service provider to earn an ATO through the CSP Supplied track, an approval process that directly involves the FedRAMP’s program management office in order to earn accreditation.
The CSP Supplied track was closed as of April 29th, part of a program restructure that puts an emphasis on speeding up the authorization process. Officials told FedScoop that only five companies are still going through the CSP Supplied process before it’s shuttered for good.
Kevin Jones, head of the federal and state practice for Skyhigh Networks, told FedScoop he considered the CSP Supplied track worthwhile despite being one of the last companies to complete the process.
“We have been treated very fairly and its been a fruitful experience,” Jones told FedScoop. “FedRAMP is a legitimate standard for data security and privacy, and they are not going to lower their standards because the achievement of FedRAMP is difficult to get.”
Skyhigh considers itself a cloud access security broker, placing software in between cloud instances and the personnel using them. The company’s government offering will allow agencies to manage security and compliance policies — such as access control, credential mapping, data encryption and data loss prevention — for the cloud services they buy from other vendors.
Founded in 2011, Skyhigh has over 500 customers and 23 million users.
Contact the reporter on this story via email at firstname.lastname@example.org, or follow him on Twitter at @gregotto. His OTR and PGP info can be found here. Subscribe to the Daily Scoop for stories like this in your inbox every morning by signing up here: fdscp.com/sign-me-on.