SmartApps

SmartRAMP 20x Suite

FedRAMP 20x continuous authorization

SmartRAMP 20x is purpose-built for the FedRAMP 20x continuous authorization process, designed for cloud service providers pursuing and maintaining FedRAMP authorization and for agencies authorizing and continuously monitoring the cloud services they consume. It shares the OSCAL foundation of SmartDACM but is built specifically around FedRAMP 20x, Key Security Indicators, and continuous machine-readable validation, replacing the point-in-time authorization model with an always-current one.

Capabilities

  • SmartRAMP Authorization Engine. The FedRAMP 20x continuous authorization core, structured around Key Security Indicators and machine-readable validation, so a package stays continuously current rather than re-authorized on a periodic cycle.
  • SmartRAMP CSP Workspace. The cloud service provider workspace for pursuing and maintaining FedRAMP and FedRAMP 20x authorization, managing the offering, its boundary, and its continuous evidence.
  • SmartRAMP Agency Workspace. The agency workspace for authorizing and continuously monitoring consumed cloud services, with the visibility an authorizing official needs to grant and sustain authorization under FedRAMP 20x.
  • SmartRAMP Continuous Validation. Automated Key Security Indicator monitoring and continuous evidence collection, surfacing drift from the authorized baseline as it happens.

Pricing

  • Metering axis: per cloud service offering or authorization boundary, per year
  • SmartRAMP Core (CSP or Agency Workspace plus Authorization Engine): $120,000 to $180,000
  • Continuous Validation layer: $50,000 to $90,000
  • SmartRAMP Enterprise full bundle: $250,000 to $400,000
  • SmartStart for SmartRAMP 20x, one-time deployment: $125,000 to $200,000