Adobe Obtains New FedRAMP Authorizations, Enhancing Its Digital Government Services in the Cloud
by Prasant Vadlamudi
posted on 09-20-2019
Today, Adobe announced that two additional cloud offerings received Federal Risk and Authorization Management Program (FedRAMP) Authority to Operate (ATO).
The new ATO enables federal agencies to easier adopt Adobe’s best-in-class, cloud-based solutions, Adobe Campaign and Adobe Analytics, which can improve the digital experiences they provide for users.
Adobe Analytics helps agencies measure their digital experiences, allowing them to make more educated decisions in their digital transformation journey. Federal agencies will now have the added capabilities needed to better analyze their online engagements across devices and reveal new insights, helping them move into the future of predictive analytics powered by artificial intelligence (AI) and machine learning.
Adobe Campaign gives agencies the ability to personalize customer experiences across online channels, such as email and mobile, and offline channels like direct mail while honoring user choices. Across the federal landscape, agencies can better optimize their promotional efforts to drive greater online engagement to digital services.
These software-as-a-service (SaaS) solutions are authorized as FedRAMP Tailored Li-SaaS, creating a streamlined process for agencies to more quickly adopt modern cloud solutions. Federal agencies can now leverage Adobe’s accredited information security environment for more of their digital experiences.
Adobe’s FedRAMP offerings
Adobe Analytics and Adobe Campaign join Adobe Creative Cloud for Enterprise and Adobe Document Cloud (PDF Services and Adobe Sign) as FedRAMP Li-SaaS authorized solutions. With a strong commitment to accelerating the federal government’s modernization journey, Adobe delivers its authorized solutions in an efficient and secure manner to federal agencies.
In addition, Adobe Experience Manager (AEM) Managed Services and Adobe Connect Managed Services are FedRAMP authorized at the moderate impact level. These services join a group of 38 other Cloud Service Offerings (CSOs) with a FedRAMP P-ATO, meaning the Joint Authorization Board (JAB) has reviewed the cloud service’s authorization package and provided a provisional approval for Federal Agencies to leverage when granting an ATO for a cloud system. The JAB consists of the Chief Information Officers from the Department of Defense, the Department of Homeland Security, and the General Services Association, supported by designated technical representatives from their respective member organizations.
Adobe has maintained FedRAMP Moderate Authorizations of AEM and Connect Managed Services since 2015 and currently maintains the compliance directly with the JAB, demonstrating the company’s commitment towards delivering upon Federal customers’ security and compliance needs.
The Adobe technology compliance strategy
Adobe’s foundational framework of security processes and compliance controls, namely Common Controls Framework (CCF) has been the key in achieving and maintaining its FedRAMP certification. CCF by Adobe is a comprehensive set of simple control requirements, aggregated, correlated and rationalized from the vast array of industry information security and privacy standards. Adoption of the CCF has helped enable Adobe’s cloud products, services, platforms and operations to achieve compliance with a host of security certifications, standards and regulations like AICPA SOC2, ISO27001, PCI DSS, FedRAMP and others.
To learn more about the tools and techniques needed to help government transform legacy systems, click here.
Special thanks to Brandon Griffeth, FedRAMP Technology Compliance Lead, Adobe for his contributions to this article.