RegScale, VITG Partner to Accelerate Process for FedRAMP Authorization

RegScale, a provider of regulatory compliance solutions, has partnered with cybersecurity consultancy Volpe Information Technology Group to help organizations accelerate their compliance with Federal Risk and Authorization Management Program regulations.

FedRAMP is a government-wide program that offers a standard method for evaluating the cybersecurity of cloud-based products and services.

RegScale said it plans to combine its expertise in automating processes for compliance with VITG’s Threat-Based Risk Profiler, a tool that RegScale said can help clients ensure readiness before filing for FedRAMP authority to operate.

The partnership is expected to help customers accelerate their preparation for security assessments, authorizations and continuous monitoring, RegScale said Thursday.

Anil Karmel, co-founder and CEO of RegScale, said the collaboration is aimed at helping clients solve two challenges. The first is the transition from static compliance documentation toward a digital and automatic process. The second challenge is having the assurance that the organization has done all necessary tasks before submitting documents for FedRAMP adjudication.

Tom Volpe Jr., the chief operating officer of VITG, noted that the entire process for FedRAMP authorization—including third-party assessments and authority to operate reviews—can last for more than 24 months.

Clients can also use the solution to streamline their compliance with National Institute of Standards and Technology’s controls, RegScale said.

The company added that their offering allows users to manage NIST machine-readable documentation for submission to FedRAMP.