Zscaler Awarded FedRAMP Authorization For Secure Internet and Web Gateway Solution
As the First FedRAMP Authorized Secure Internet and Web Gateway Provider, the Zscaler Platform Enables Government Agencies to Securely Route Mission-Critical Traffic Straight to the Cloud
San Jose, California, December 17, 2018
Zscaler, Inc., the leader in cloud security, today announced that Zscaler Internet Access™-Government (ZIA™-Government) has received Authorization to Operate (ATO) at the Moderate Impact level under the Federal Risk and Authorization Management Program (FedRAMP). ZIA-Government is the first secure internet and web gateway solution to earn FedRAMP certification and to meet the guidance of the recently released Trusted Internet Connection (TIC) 3.0 Initiative, enabling Federal agencies to use modern and emerging technologies, like Zscaler – Government, to meet their TIC initiative requirements.
As the Federal government pushes forward with IT modernization and deploys cloud services, the FedRAMP program provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud solutions – requiring cloud providers to meet strict security provisions to gain certification. Furthermore, to increase flexibility to use modern security capabilities, the draft policy for the Trusted Internet Connection (TIC) 3.0 program was recently released, recognizing the need to deploy solutions to remove barriers to cloud adoption.
“As security moves to the cloud, agencies need to address reducing the complexity and the sheer number of security applications in their network. Zscaler represents part of a new breed of solutions that significantly reduces costs, simplifies security architecture, and reduces overhead,” said Tony Summerlin, special advisor (as a consultant) to the FCC. “ZIA-Government is a unique single platform that is easily deployed, easily managed, and reduces the TIC Footprint.”
ZIA-Government delivers the security stack as a service from the cloud, enabling agencies that follow the TIC 3.0 policy to route more mission-critical traffic straight to the cloud, without having to hairpin through the Managed Trusted Internet Protocol Service (MTIPS) or the legacy TIC perimeter. This means securely connecting users over the internet to externally managed applications regardless of device, employee location, or network. Agencies can reduce the costs associated with backhauling traffic through outdated technology and the associated complex array of security applications, while increasing performance.
“Our ZIA-Government’s FedRAMP certification is a unique milestone, and the first step in bridging the importance of FedRAMP with the IT Modernization and TIC, as agencies move to a ‘TIC-in-the-Cloud’ model,” said Stephen Kovac, Vice President of Global Government and Compliance. “We are enabling federal agencies to move more securely to the cloud while providing their users secure, fast, and reliable access to any application from any device or location, which supports the administration’s Cloud Smart initiative and the newly released TIC 3.0 draft policy.”
Earlier this year, Zscaler Private Access™-Government (ZPA™-Government), which delivers secure, direct access to internal applications in the cloud, was awarded a FedRAMP ATO. Additionally, the FedRAMP Connect program recently announced ZPA-Government is prioritized for Joint Authorization Board (JAB) certification at the High Impact baseline, based on significant government-wide demand and applicability.
"Zscaler, which was recently named a leader in the Gartner Magic Quadrant for Secure Web Gateways for the 8th year in a row, continues its proven track record of leadership and innovation in cloud security as the first secure internet and web gateway provider to achieve FedRAMP authorization,” said Manoj Apte, Chief Strategy Officer, Zscaler. “ZIA-Government enables agencies to adopt federal-approved cloud applications like Salesforce and Office 365 with ease. At the same time, ZPA-Government delivers policy-based access to applications, from any device, whether they are in the data center or in AWS GovCloud."