Case Study

Helping the World’s Largest Software Provider Achieve FedRAMP® ATO

March 6, 2017
Resources New Case Studies Helping Software Provider Achieve Fed RAMP ATO 814x460

The largest software provider in the world delivers cloud services to many of the leading enterprises and government agencies. Its cloud infrastructure supports more than one billion customers in 140 countries.

CHALLENGE

When this software provider decided to pursue a Federal Risk Authorization and Management Program (FedRAMP) authority to operate (ATO) so it could offer its cloud services to federal agencies, an authorized independent assessment was necessary. At the same time, other compliance needs emerged from internal teams. Although the work started with another contractor, the company eventually reached out to Coalfire, who provided expertise within a full spectrum of compliance services.

APPROACH

Coalfire has extensive experience leveraging data across a variety of compliance frameworks. Our solution spanned six different product suites, and supported our client’s compliance with:

  • HITRUST
  • IRS 1075
  • FedRAMP
  • ISO 13485
  • HIPAA
  • FISMA

 

Each engagement required careful review of compliance data. We accurately planned and scheduled the thorough testing of the hundreds of controls required to meet stringent compliance standards. Our subject-matter experts have the skills and experience to minimize the time needed from the client’s engineers, thereby reducing the time and costs associated with each engagement.

We worked closely with our client to prepare interviews ahead of time and schedule individual teams for specific times prior to arriving at site. This collaborative style helped maximize the effectiveness of each assessment, while minimizing the operational impact on the client’s personnel.

RESULTS

This software giant represents a perfect example of how Coalfire skillfully analyzes compliance framework data for patterns and overlap to create time and cost efficiencies, while responding and scaling to growing customer needs. We integrate experts with the necessary skill sets to surpass customer expectations regardless of the framework or requirement. All assessments were completed on time, within budget, and with successful compliance results.

This client offers the most comprehensive set of certifications and attestations of any cloud service provider, and Coalfire has played, and continues to play, a critical role in helping it achieve this distinction.