TAMPA, Fla.--(BUSINESS WIRE)--Sunera, a leader in business and technology risk consulting, today announced it has been accredited as a Third Party Assessment Organization (3PAO) by the American Association for Laboratory Accreditation (A2LA). This independent accreditation enables Sunera to conduct certification testing under the Federal Risk and Authorization Management Program, commonly known as FedRAMP, a government-wide program that provides a standardized approach to security assessment, authorization and continuous monitoring for cloud service providers. The news means that organizations with FedRAMP requirements can immediately turn to Sunera’s experts and the company’s RMS Compliance Platform to minimize the time, effort, and cost historically associated with FedRAMP compliance.
Most organizations aspiring to achieve FedRAMP compliance are already subject to rigorous data security and privacy controls from standards and regulations such as: HIPAA / HITECH, the National Institute of Standards and Technology’s (NIST) Risk Management Framework (RMF), and other security mandates. It is more important than ever for these organizations to leverage their existing compliance efforts to avoid duplicative costs and disconnects that are commonplace when approaching compliance in silos. The combination of Sunera’s subject matter experts and RMS compliance platform offers cloud service providers a better risk-based approach to streamline what has been historically a documentation-heavy lift. This approach also allows Sunera to offer a unified compliance strategy reducing future redundant testing efforts.
“This accreditation reinforces Sunera’s position as a market leader in cyber risk management capable of assessing FedRAMP controls, in addition to bringing further compliance experience and abilities to clients, via Sunera’s status as a PCI Qualified Security Assessor and registration with the PCAOB to perform SSAE-16 SOC testing,” said Sunera CEO Yong-Gon Chon. “With so much overlap among security controls, the ability to align testing requirements across compliance areas adds tremendous value for cloud providers, federal agencies and partners. Sunera’s accreditation as a FedRAMP 3PAO offers our clients a timely, improved avenue to achieve FedRAMP certifications more quickly and comprehensively by combining Sunera’s capabilities with the recently announced FedRAMP Accelerated initiative intended to reduce authorization times by up to 75 percent.”
In addition, Sunera’s RMS platform offers FedRAMP clients a centralized portal for complete compliance management, including the ability to create compliance documentation and artifacts on-demand. This allows Sunera’s FedRAMP clients to reduce costs associated with project management, shorten the timeline to FedRAMP compliance, and improve the likelihood of a successful FedRAMP authorization.
Sunera LLC is headquartered in Tampa, Florida, and offers cyber security, data privacy, data analytics and IT audit services. Its parent company, Cyber Risk Management, LLC (CRM), is one of the largest pure-play cyber risk companies in North America. Through its subsidiaries, it provides holistic risk management services to help top companies measure, control, improve and monitor their cyber risk.