H.R.3941 - Federal Risk and Authorization Management Program Authorization Act of 2019116th Congress (2019-2020)
|Sponsor:||Rep. Connolly, Gerald E. [D-VA-11] (Introduced 07/24/2019)|
|Committees:||House - Oversight and Reform | Senate - Homeland Security and Governmental Affairs|
|Committee Reports:||H. Rept. 116-391|
|Latest Action:||Senate - 02/10/2020 Received in the Senate and Read twice and referred to the Committee on Homeland Security and Governmental Affairs. (All Actions)|
This bill has the status Passed House
Here are the steps for Status of Legislation:
- Passed House
Summary: H.R.3941 — 116th Congress (2019-2020)All Information (Except Text)
Passed House (02/05/2020)
Federal Risk and Authorization Management Program Authorization Act of 2019 or the FedRAMP Authorization Act
This bill provides statutory authority for the Federal Risk and Authorization Management Program (FedRAMP) within the General Services Administration (GSA).
The GSA must establish a government-wide program that provides the authoritative standardized approach to security assessment and authorization for cloud computing products and services that process unclassified information used by agencies. Agencies must ensure that their cloud computing services meet GSA requirements.
The bill establishes the Joint Authorization Board to conduct security assessments of cloud computing services and issue provisional authorizations to operate to cloud service providers that meet FedRAMP security guidelines.
The GSA shall (1) determine the requirements for certification of independent assessment organizations, and (2) establish the Federal Secure Cloud Advisory Committee.