FedRAMP Moderate Baseline by Allgress - AWS Audit Manager

FedRAMP Moderate Baseline by Allgress

AWS Audit Manager provides a FedRAMP Moderate Baseline by Allgress framework to assist you with your audit preparation.

What is FedRAMP?

The Federal Risk and Authorization Management Program (FedRAMP) is a US government-wide program that provides Cloud Service Providers (CSPs) a standardized approach to security assessment, authorization, and continuous monitoring for their products and services. In doing so, the program also provides assurance to federal agencies regarding the compliance of the CSPs controls related to their cloud offering.

The FedRAMP Moderate Baseline by Allgress framework lists the moderate impact level controls within the FedRAMP Moderate Security Controls Baseline document for CSPs that will handle government data that isn't publicly available by Allgress.

Use AWS Audit Manager to support your FedRAMP audit preparation

You can use the FedRAMP Moderate Baseline by Allgress framework in AWS Audit Manager to prepare for audits. The framework contains 376 automated controls and 835 manual controls. The controls in this framework aren't intended to verify whether your systems are compliant with FedRAMP, and they can't guarantee that you will pass a FedRAMP assessment. AWS Audit Manager doesn't automatically check procedural controls that require manual evidence collection.

You can find the FedRAMP Moderate Baseline by Allgress framework under the Standard frameworks tab of the Framework library in Audit Manager.

For instructions on how to create an assessment using this framework, see Creating an assessment. For instructions on how to customize this framework to support your specific requirements, see Customizing an existing framework and Customizing an existing control.