A StateRAMP Primer – Understanding the New Authorization Option
Learn what StateRAMP is and its shared service model for best practices that can help your organization manage risk and verify security
In this webinar, DataBank’s CISO, Mark Houpt will be discussing StateRAMP’s shared service model for best practices that can help your organization manage risk and verify security. Mark will discuss the application of StateRAMP within your organization and how to apply for the authorization. He will also describe how the controls can be implemented and the important differences between StateRAMP and FedRAMP. With more companies offering work-from-home capabilities and more data moving to the cloud, it is important to implement controls to reduce your risk of being affected by a cyberattack. StateRAMP is working with state and local governments, service providers, and third-party assessment organizations to standardize these controls.
Founded at the beginning of 2020, StateRAMP was born from the clear need for a standardized approach to the cybersecurity standards required from service providers offering solutions to state and local governments.
StateRAMP is a membership organization comprised of service providers offering IaaS, PaaS, and/or SaaS solutions, third party assessment organizations, and government officials. Our members lead, manage, and work in various disciplines across the United States and are all committed to making the digital landscape a safer, more secure place.
About Mark Houpt
Chief Information Security Officer @DataBank. Ltd
Mark brings over 25 years of extensive information security and information technology experience in a wide range of industries and institutions. Mark holds an MS-ISA (Masters Information Security and Assurance) and numerous security and technical certifications (CISSP, CCSP, CEH, CHFI, Security +, Network+). Mark is an expert in understanding and interpretation of FedRAMP, HIPAA, and PCI-DSS compliance requirements. Mark is an active member of ISC2, ASIS International, COMPTIA, IAPP, and ISACA.