Doug Stonier is a Senior Manager at Schellman based in Knoxville, Tennessee. He has over 8 years of experience performing assessments on cybersecurity programs in the Government & Public Sector. After joining Schellman in 2016, Doug focused his attention on FedRAMP; assessing cloud service provider systems at all security baselines and through the different authorization routes (Agency and JAB). In addition to performing numerous FedRAMP assessments, Doug has experience assessing organizations for compliance with other federal frameworks, including NIST SP 800-53 and DoD CC SRG.
By:
Doug Stonier
December 6th, 2024
When deciding to take on a new compliance initiative, one question that often gets asked is whether or not work done for prior assessments can be leveraged to save time or money. For those who have pursued FedRAMP Authorization and now wish to go through IRAP—both frameworks that must be adhered to as a means to do business with two different governments—the good news is that your experience with FedRAMP will provide a solid foundation for IRAP.
By:
Doug Stonier
May 2nd, 2024
In a rapidly transforming digital landscape, private organizations aren’t the only ones attempting to protect themselves from evolving cyber threats—governments are too. In the United States, FedRAMP and StateRAMP have risen to prominence as “gatekeeper” frameworks to doing work with those levels of American government, and on the opposite side of the globe, Australia has IRAP.