Cloud Security Company Zscaler Awarded #FedRAMP Authorization

Zscaler, a cloud security provider creating “fast, secured” connections between users and applications, regardless of device, location, or network, has received Authorization to Operate (ATO) at the Moderate Impact level under the Federal Risk and Authorization Management Program (FedRAMP) for its Zscaler Internet Access-Government (ZIA-Government) ‘Internet and web gateway’ solution.

Zscaler’s ZIA-Government solution delivers the security stack As-a-service from the cloud, enabling agencies that follow the Trusted Internet Connection (TIC) 3.0 policy to route more mission-critical traffic straight to the cloud, without having to hairpin through the Managed Trusted Internet Protocol Service (MTIPS) or the legacy TIC perimeter.

This means “securely” connecting users over the Internet to externally managed applications regardless of device, employee location, or network. It would enable agencies to reduce their costs associated with backhauling traffic through outdated technology and the associated complex array of security applications, while increasing performance.

“As security moves to the cloud, agencies need to address reducing the complexity and the sheer number of security applications in their network,” said Tony Summerlin, special advisor (as a consultant) to the FCC. “Zscaler represents part of a new breed of solutions that significantly reduces costs, simplifies security architecture, and reduces overhead. ZIA-Government is a unique single platform that is easily deployed, easily managed, and reduces the TIC Footprint.”

‘TIC-in-the-Cloud’ Model

The FedRAMP program provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud solutions – requiring cloud providers to meet strict security provisions to gain certification. Zscaler ZIA-Government meets the guidance of the recently released Trusted Internet Connection (TIC) 3.0 Initiative, enabling Federal agencies to use “modern and emerging” technologies, like Zscaler – Government, to meet their TIC initiative requirements.

“Our ZIA-Government’s FedRAMP certification is a unique milestone, and the first step in bridging the importance of FedRAMP with the IT Modernization and TIC, as agencies move to a ‘TIC-in-the-Cloud’ model,” said Stephen Kovac, Vice President of Global Government and Compliance, Zscaler. “We are enabling federal agencies to move more securely to the cloud while providing their users with secure, fast, and reliable access to any application from any device or location, which supports the administration’s Cloud Smart initiative and the newly released TIC 3.0 draft policy.”

Earlier this year, Zscaler Private Access-Government (ZPA-Government), which delivers secured, direct access to internal applications in the cloud, was awarded a FedRAMP ATO. Additionally, the FedRAMP Connect program recently announced ZPA-Government is prioritized for Joint Authorization Board (JAB) certification at the High Impact baseline, based on significant government-wide demand and applicability.

“Zscaler, which was recently named a leader in the Gartner Magic Quadrant for Secure Web Gateways for the 8th year in a row, continues its proven track record of leadership and innovation in cloud security as the first secure internet and web gateway provider to achieve FedRAMP authorization,” said Manoj Apte, Chief Strategy Officer, Zscaler. “ZIA-Government enables agencies to adopt federal-approved cloud applications like Salesforce and Office 365 with ease. At the same time, ZPA-Government delivers policy-based access to applications, from any device, whether they are in the data center or in AWS GovCloud.”