Procore Taps Coalfire® Expertise to Pursue FedRAMP® Moderate

Michael Marfise, Vice President of Product, Platform, and Ecosystem at Procore, explained the motivation behind seeking FedRAMP authorization:

"Customer demand was the primary motivator. Our customers love Procore’s product and want to use it for all their projects, but without FedRAMP, they had to keep certain projects off our platform. We see it as our obligation to help them bring those projects on board."

With federal agencies needing secure and compliant solutions, Procore saw a valuable opportunity to better serve their federal customers and contractors. To ensure a smooth and efficient process, Procore partnered with Coalfire, a trusted leader in federal compliance. Coalfire’s proven experience in navigating federal marketplace requirements is helping Procore accelerate its ability to deliver secure, government-ready solutions.

Steve Hilbert, Principal Technical Compliance Program Manager, highlighted the critical role Coalfire plays in the process:

"Coalfire brings not only experience but also credibility to our FedRAMP journey. Their established practices and involvement with many federal listings help us accelerate our efforts and ensure we are on the right path to meet our compliance goals."

Since the beginning of the partnership, Procore and Coalfire have worked closely to assess risks, develop a roadmap, and implement the necessary processes and security controls. Coalfire has played a critical role in coordinating efforts across multiple departments within Procore, ensuring the products meet FedRAMP requirements. Their comprehensive approach, which includes IT, HR, and legal, prepares all aspects of the business for the rigorous FedRAMP security standards. Procore describes the collaboration as a dynamic, hands-on partnership, with Coalfire providing essential workshops and advisory sessions to guide them through FedRAMP readiness.

FedRAMP authorization is a lengthy and complex process, requiring extensive documentation, risk assessments, and compliance with stringent security controls. A key challenge has been ensuring that stakeholders across Procore are fully engaged and understand the requirements. To address this, the team has implemented regular updates and training sessions to keep everyone informed and aligned.

Procore remains confident that their combined efforts with Coalfire will help them efficiently navigate the FedRAMP application process. By focusing on building the necessary infrastructure and completing foundational work early, the team is paving the way for a smoother path to final authorization.

Procore’s pursuit of FedRAMP Moderate authorization, with Coalfire as a strategic partner, underscores its commitment to meeting its government customers' evolving security needs. By achieving this milestone, Procore will not only strengthen its overall security posture, but deliver greater value to both government and commercial clients.

Procore’s journey towards compliance is a testament to its customer-centric approach and dedication to expanding its capabilities in regulated markets. This partnership with Coalfire marks a crucial step toward better serving the needs of regulated markets, ensuring long-term value and success for its federal clients.