US National Defense Authorization Act (NDAA) For Fiscal Year 2023: Important Changes To Procurement Laws And Policy

President Joe Biden has marked regulation that will change the FedRAMP cybersecurity authorization approval for cloud merchants by permitting FedRAMP authorized tools to be used in any federal agency without additional oversight or verification.

One of the most subsequent features of the FedRamp reform language is a “presumption of adequacy” clause, which would permit FedRAMP-authorized tools to be used by any federal agency without additional look over.

FedRAMP is a significant cybersecurity certification that cloud service providers should acquire prior to operational with U.S. government information.

In September, after an uphill battle for almost six years led by Rep. Gerry Connolly, D-Va, The newest recitation of the Federal Risk and Authorization Management Program (FedRAMP) bill passed the House.

The FedRAMP Authorization Act bill will make sure FedRAMP has a board to intensify and accelerate the program. It would also create a distinct cloud advisory committee that includes two officers from small cloud vendors and five officers of which should come from cloud services companies.

Two serving chief information officers from federal ministry agencies would also sit on the cabinet. Additionally, the 15-strong advisory jury would also contain one officer each from the Infrastructure Security Agency, National Institute of Standards and Technology and Cybersecurity.

On the technology front, the FY2023 NDAA notably features legislation to codify into law and update the Federal Risk and Authorization Management Program (FedRAMP). It also includes funding bumps for a variety of Defense Department (DoD) security functions and numerous cybersecurity-related provisions .

In a statement to FedScoop, Chairman of the Senate Homeland Security and Governmental Affairs Committee Sen. Gary Peters said the legislation would make it easier for agencies to quickly acquire cloud states and also protect the tremendous amount of sensitive data held by departments from cyberattacks. This bill also allows both the cloud service providers and Federal government stakeholders to work together to enhance the program while maintaining a rigorous standard for security.

Here is the reference link:- https://www.fedscoop.com/fedramp-reform-measures-enacted-as-biden-signs-ndaa-into-law/