It’s official- FedRAMP Moderate has a new date in cloud.
Oct 2, 2023
Hi all,
We know that many of you have been waiting to hear about our plans for FedRAMP and I am happy to share that we’re on pace to have our In Process designation via agency authorization by Q2 2024 and our Moderate Authorization to Operate by Q1 2025. Furthermore, we have expanded the scope of our initial offering to include Jira Service Management Cloud, to enable your teams to collaborate effortlessly across three of our major cloud products.
As we’ve shared in previous posts, our increased investment in recent months has allowed us to accelerate our path to authorization. To date, we’ve:
Implemented the majority of the FedRAMP Moderate control requirements
Expanded our original scope to include Jira Service Management as part of our initial offering; and
Incorporated best-in-class NIST security standards across our platform
Stay supported with Data Center
Server EoS (end of support) is only 5 months away and with FedRAMP coming to cloud at a later date, many of you need an option sooner. Data Center, our self-managed enterprise solution, remains an integral offering and will continue to be the best choice for keeping your teams secure and supported as we continue to work on FedRAMP ATO. Upgrading to Data Center requires only the cost of a new license key, so the switchover can be done in just a few minutes. Don’t risk an unsupported server. Instead, take advantage of all that Data Center has to offer, from native automation to zero-downtime upgrades.
As we work towards authorization, we’ll continue to share updates in this space. In the meantime, if you have any questions feel free to add them below!
I like Marks comment. If we new the agency I guarantee someone in this room knows a CTO or CIO at one of those agencies. :)
Of course this doesn't sound like a sponsor issue. With the amount of Atlassian products floating inside agencies this sounds like a priority, resource, funding, or FIPS 140-2 issue for data in transit or data at rest with back end systems :)
Just attempting to state the obvious of what Atlassian should be doing.
You can't be telling or selling a product to a market, especially federal customers and then have a 3-4 year fedramp cycle. I'm sorry for being rude, but I've worked 30 some fedramp engagements as an advisor and at the end of the day all the had issues, but really boiled down to leadership priority. And that comes down always to funding. Funding for US staffed personnel, more engineers, less managers.
At Symantec we had like 3-4 managers or executives for ever 1 engineer in literally was the movie "office Space" back then.
As a FedRAMP advisor I'm literally confronted with telling companies that have to yank everything out of jira and confluence. Years of work, automation, roadmaps you name it we have to scrub each time. Its beyond irritating,
But that statement goes to the greatness of how market considers the Atlassian suite of products. I use to be a hardcore sharepoint guy and I love confluence and Jira.
This is compounded by the fact that Atlassian use to offer "Server" as a low cost SMB consumable product only to be told, HEY lets turn that frown upside down with our $27,000 Data center option. WHAT your company can't afford to spend all that time and money migrating from our cloud to onprem datacenter, or you were paying $100 for server and now we need $27,000?? I can't hear you anymore.
Thank you for your comments! We value transparency and will keep our customers and partners updated on our compliance journey as often as possible.
We're laser-focused on FedRAMP Moderate at the moment but will share our roadmap beyond FedRAMP Moderate as soon as we can.
With regards to the Rev5 updates, we’ve focused on making those updates since they were first made available and are confident in our plan to implement all Rev5 updates.
I hope this addresses your comments. Let's keep this conversation going. We value your input as we work toward better serving the Public Sector.
My company requires non-cloud solutions for JIRA with less than 10 users. Data Center costs push us to move away from JIRA, a product we are very happy with, and have used for many years.
Contegix is working with Atlassian to offer a FedRAMP moderate option while they work through their ATO. We also have FedRAMP high and up to DISA IL5. I've linked our partner directory listing above. We'd be happy to talk to anyone about their FedRAMP needs, DC licensing, and overall journey to Cloud.
DC in the cloud, we have a couple ways we can do it and can make plans for a migration to Atlassian Cloud when it's ready. I (rightfully) need to be careful about selling here in the forum so I'll just say reach out and we'll be happy to go over the options available to you now and planning for the future.
11 comments