On February 14, 2025, StateRAMP announced a rebrand to GovRAMP. StateRAMP said the rebrand helps it better reflect its support for local, tribal, and educational entities rather than only state-level agencies.
GovRAMP’s framework for cloud service providers is modelled after FedRAMP – a mandatory security standard for Cloud Service Providers (CSPs) selling to Federal agencies. Cloud Service Providers must meet a strong security baseline to gain FedRAMP or GovRAMP Authorizations, but in each case they benefit from a uniform standard across hundreds of public agencies rather than having to meet each agency’s unique security requirements.
Why the Name Change?
StateRAMP’s name emphasized a “state-level” focus on the organization’s efforts, leading cities, counties, local educational agencies, and tribal governments to sometimes question their eligibility for StateRAMP membership. StateRAMP’s rebranding to GovRAMP is intended to communicate the inclusion of all levels of government rather than just state level agencies.
This increased visibility will benefit both GovRAMP and the agencies using its services; the more agencies requiring products to have StateRAMP authorization, the more likely CSPs are to participate in the program. Public agencies requiring GovRAMP Authorization benefit from holding CSPs to a strong, modern data security standard that they do not have to internally develop and continually maintain.
No Changes to Services Offered
The legal entity will stay as “StateRAMP” but will do business as GovRAMP going forward, allowing all existing contracts and memberships to continue. The organization will gradually introduce GovRAMP branding elements throughout 2025.
The organization will continue to provide the same services and support, just under a new name reflecting the broad community of public agencies they serve.
