Back to blog results

June 11, 2019By George Gerchow

Now FedRAMP Ready, Sumo Logic Empowers Public Organizations

As we continue to adopt a digital-first mentality globally, there’s a massive shift to the cloud happening within federal agencies. While the sector has traditionally been slower to adopt new technologies, these agencies are understanding the urgent need to transition from legacy on-premise systems to more scalable and secure, cloud-based architectures. Federal IT leaders are recognizing the cloud’s benefits for improving mission critical services and 60 percent are planning to shift investments towards cloud-based models over the next three years. However, cloud-native options that meet federal security requirements are still limited.

To help lead this transition to the cloud, Sumo Logic is dedicated to maintaining the highest level of security needed to support mission-critical applications. Recently, we became the first and only cloud-native machine data analytics platform to achieve the Federal Risk and Authorization Management Program (FedRAMP) Ready designation and are now listed in the FedRAMP marketplace for federal agencies and government contractors. Sumo Logic’s multi-tenant environment and multi-cloud capability sets us apart and makes us uniquely suited to serve the federal government. To ensure that our federal customers information is secure and private, we have specifically tailored our approach to customers within this space. This ability sets us apart in the market as we’re currently the only vendor to offer this type of flexibility, elasticity and scale for not only the federal space but across all industries. This FedRAMP Ready designation is a testament to our platform’s secure by design approach, and also marks a critical first step toward achieving a FedRAMP Authorization.

What is FedRAMP Authorization?

FedRAMP is a government-wide compliance program that provides a standardized approach to security assessment, authorization, and monitoring for cloud services. To achieve FedRAMP authorization, cloud service providers must undergo a stringent, in-depth audit of their data security safeguards and technology.

This three step authorization process, begins with the completion of a FedRAMP Readiness Assessment Report (RAR) and is followed by a Security Assessment Report (SAR) phase before achieving final authorization. In phase two, vendors can pursue two routes either an Agency Authorization to Operate (ATO) that requires a government agency sponsor, or a Joint Authorization Board Authorization to Operate (JAB-ATO).

The Sumo Logic federal environment is a fully functioning multi-cloud capable ecosystem established specifically to serve the federal market to build, secure and power modern applications. Our accomplishment of FedRAMP readiness is a major achievement and our dedication to completing the process emphasizes our mission to provide all customers with the highest level of security confidence.

Unlocking continuous intelligence in the public sector

This FedRAMP Ready designation puts Sumo Logic on the path to achieving a FedRAMP Authorization and makes it easier for U.S. federal agencies to adopt Sumo Logic services.. With Sumo Logic, federal organizations gain the continuous intelligence and insights needed to securely migrate their workloads to the cloud, adopt DevSecOps practices and address the shared responsibility of the public cloud model.

To help lead our efforts in the federal space, we’re excited to bring on board Doug Natal as Sumo Logic’s new general manager of federal to oversee our go-to-market strategy for the public sector. Doug offers over two decades of experience leading federal sales teams and developing successful market strategies.

As the public sector continues to accelerate cloud migrations, Sumo Logic is devoted to providing the highest level of support and security as a trusted advisor and partner to federal agencies.

Read more about what Sumo Logic’s FedRAMP ready designation means for federal customers in the press release.

Complete visibility for DevSecOps

Reduce downtime and move from reactive to proactive monitoring.

George Gerchow

George Gerchow

As Sumo Logic's Chief Security Officer (CSO), George Gerchow brings 18 years of information technology and systems management expertise to the application of IT processes and disciplines. His expertise impacts the security, compliance, and operational status of complex, heterogeneous, virtual and cloud computing environments. Mr. Gerchow's practical experience and insight from managing the infrastructures of some of the world's largest corporate and government institutions, make him a highly regarded speaker and invited panelist on topics including cloud secure architecture design, virtualization, configuration management, operational security and compliance. George was one of the original founders of the VMware Center for Policy and Compliance and he holds CISSP, ITIL, Cisco, and Microsoft Certifications. Mr. Gerchow is also an active Board Member for several technology start ups and the co-author of Center for Internet Security - Quick Start Cloud Infrastructure Benchmark v1.0.0 and is a Faculty Member for IANS - Institute of Applied Network Security https://www.iansresearch.com/

More posts by George Gerchow.

People who read this also enjoyed