As a designated Third Party Assessment Organization (3PAO), Kratos works with Cloud Service Providers (CSPs) to help ensure their readiness to proceed with the 3PAO assessment process.

Kratos pre-assessment service is based on a gap analysis that determines an organization’s current “baseline” as it relates to FedRAMP compliance. Kratos helps organizations evaluate their current FedRAMP compliance status, identify the gaps that exist, and address them to secure the cloud with confidence.

Kratos’ Four Key Step Process for FedRAMP Readiness

1. Ensure the understanding of the standardization and compliance requirements, including the process, required artifacts, assessment preparation, and continuous monitoring.
2. Identify potential deficiencies or lack of controls that could result in a failure to comply with FedRAMP and National Institute of Standards and Technology (NIST) requirements.
3. Provide a gap analysis that identifies potential areas of non-compliance.
4. Recommend solutions and processes to meet the FedRAMP requirements prior to completing a security assessment.

FedRAMP Pre-Assessment Benefits

• Increases awareness about the requirements necessary for FedRAMP compliance
• Provides a “baseline” of an organization’s FedRAMP environment, as it relates to the compliance requirements
• Identifies the gaps where an organization is not adequately meeting the requirements
• Recommends at a high level, strategies to address the gaps and areas for improvement