cloud approval

Apptio, Google tapped for FedRAMP authorizations

The Federal Risk and Authorization Management Program has recently approved a number of services for government agency use. Services from Apptio, Google, Microsoft and Oracle were all granted a provisional authority to operate from the Joint Authorization Board.

Apptio's Technology Business Management software was issued a P-ATO under the moderate impact level. The company's TBM solution is designed to help agencies at all levels of government improve IT spending practices. Washington state used it to help its Office of the CIO to develop a taxonomy comparing the state's IT spending with the private sector.

The Department of Defense, Department of Homeland Security and General Services Administration will leveraging Apptio’s services, the company said. To further support federal agencies, Apptio said it will be releasing additional product capabilities related to DOD appropriations, Office of Management and Budget reporting and budget tracking.

The Google Cloud Platform and the company's underlying common infrastructure also received a FedRAMP ATO at the moderate impact level. G Suite and parts of GCP already had moderate authorizations from the General Services Administration for workloads under the moderate impact level. This JAB P-ATO expands these authorizations, making 49 GCP products now FedRAMP-approved, including Google Container Registry, Google Cloud SQL and Google Cloud Virtual Network.  A full list of services can be found here.

The authorization also lets vendors seeking their own FedRAMP certification to inherit infrastructure-as-a-service and platform-as-a-service controls from GCP, Kripa Krishan, director of the Google Cloud Platform, wrote in a March 23 blog post.

Microsoft’s Dynamics Government 365 was granted FedRAMP authorization for data at the high impact level, giving agencies a software-as-a-service solution for workloads containing sensitive information such as personally identifiable information and law enforcement and financial data.

JAB authorization was also issued to Oracle’s Government Cloud-Common Controls, a collection of resources in the Oracle Public Cloud that support current and planned Oracle applications, platforms, and services for public-sector customers.  

About the Author

Sara Friedman is a reporter/producer for GCN, covering cloud, cybersecurity and a wide range of other public-sector IT topics.

Before joining GCN, Friedman was a reporter for Gambling Compliance, where she covered state issues related to casinos, lotteries and fantasy sports. She has also written for Communications Daily and Washington Internet Daily on state telecom and cloud computing. Friedman is a graduate of Ithaca College, where she studied journalism, politics and international communications.

Friedman can be contacted at or follow her on Twitter @SaraEFriedman.

Click here for previous articles by Friedman.


Charter Sponsors