Federal Authorization Services

Get your applications authorized faster and for less money

The Federal Risk and Authorization Management Program (FedRAMP) is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services. It applies a rigorous review process which certifies that cloud services meet a strict baseline of security standards.

Compliance with FedRAMP is mandatory for federal agencies and also has been adopted by many state and local governments. And for Cloud Service Providers (CSP), Independent Software Vendor(s), and solution providers selling COTS and custom applications, FedRAMP authorization is quickly becoming a requirement to compete and win in an enormous IT market that is increasingly purchasing software as a service.

While FedRAMP creates a much-needed common baseline across the government, gaining authorization (and maintaining it annually) is an extremely complex, time-consuming, and resource-intensive undertaking. Completing the initial authorization can take longer than a year and typically requires an investment of up to $1 million or more.

The ORock Technologies Difference

ORock solutions enable application owners to achieve FedRAMP authorization faster and for less money through a unique combination of hosting and authorization services. We’ll prepare you to go to market with a FedRAMP-authorized SaaS or PaaS application in only a few months and at a fraction of the cost of pursuing your own authorization to operate (ATO).


ORock Technologies will accelerate your path to FedRAMP authorization.

ORock Federal Application Authorization Services (FAAS)

ORock’s Federal Application Authorization Services (FAAS) program is a turnkey, all-inclusive approach to FedRAMP authorization. It allows application owners to achieve authorization while reducing time to market and up-front investment. FAAS is customized to your specific requirements and incorporates:

  • Inclusion of your applications in ORock’s System Security Plan (SSP)
  • Application hosting (in two nodes) in ORockCloud (currently “FedRAMP In Process” at the Moderate Impact Level) or an ORock private hosting environment
  • Security consultant review by Coalfire, ORock’s security consultant
  • Third-party assessment by Schellman & Company, ORock’s 3PAO
  • Disaster recovery capabilities
  • Project management throughout the process
  • US-based support

To learn more about ORock FAAS, contact us today.

In addition, learn more about ORock solutions for secure cloud and infrastructure as a service, application hosting and migration, and connectivity and mobility.