Cloud security provider Zscaler announced today that it received FedRAMP (Federal Risk and Authorization Management Program) authority to operate (ATO) at the Moderate Impact Level for its Zscaler Internet Access-Government (ZIA-Government) solution–nearly coincident with the Office of Management and Budget’s release of a draft update of its Trusted Internet Connections (TIC) policy late Friday.
Zscaler said ZIA-Government is the “first secure internet and web gateway solution to earn FedRAMP certification and to meet the guidance” of the TIC 3.0 draft policy.
The draft policy, among other things, aims to remove barriers to cloud and modern technology adoption, ensure that the TIC initiative remains agile, and streamline and automate verification processes.
“Our ZIA-Government’s FedRAMP certification is a unique milestone, and the first step in bridging the importance of FedRAMP with IT Modernization and TIC, as agencies move to a ‘TIC-in-the-Cloud’ model,” commented Stephen Kovac, Zscaler’s Vice President of Global Government and Compliance, in a statement.
“We are enabling federal agencies to move more securely to the cloud while providing their users with a secure, fast, reliable access to any application from any device or location, which supports the administration’s Cloud Smart initiative and the newly released TIC 3.0 draft policy,” he said.
The company, named a leader in the 2018 Gartner Magic Quadrant for secure web gateways for the 8th year in a row, said ZIA-Government “delivers the security stack as a service from the cloud, enabling agencies that follow the TIC 3.0 policy to route more mission-critical traffic straight to the cloud, without having to hairpin through the Managed Trusted Internet Protocol Service (MTIPS) or the legacy TIC perimeter.”
“This means securely connecting users over the internet to externally managed applications regardless of device, employee location, or network,” it said, adding, “Agencies can reduce the costs associated with backhauling traffic through outdated technology and the associated complex array of security applications, while increasing performance.”