How Can the Public Sector Meet its Diverse Cybersecurity Needs?

Written by Jordan Hickam | 3/3/25 3:11 PM

While no two states, cities, or other local municipalities share the exact cybersecurity needs, cybercrime affects them all. By leveraging their commonalities, Risk Authorization Management Programs like FedRAMP and StateRAMP help governments by standardizing frameworks to meet their different needs.

Key Takeaways

Recognizing that state governments are unique, the Executive Director of the National Association of State Chief Information Officers coined the statement, , “If you’ve seen one state, you’ve seen one state.” Starting by looking at areas of commonality is key to meeting public sector cybersecurity needs.
StateRAMP’s security program aligns with FedRAMP, bases controls on NIST frameworks, and covers approximately 90% of state and local government minimum requirements.
The alignment of state and federal frameworks ensures comprehensive security and simplifies the compliance process for the public sector.

Meet Our Speaker

Leah McGrath, Executive Director of StateRAMP

Having served municipalities with the Indiana Association of Cities and Towns and as Deputy Mayor of Fishers, Leah understands the daily cyber threat challenges the public sector faces. She has led StateRAMP as its Executive Director since its launch in 2021. Today, Leah and StateRAMP continue to streamline cybersecurity with a standardized approach and framework based on NIST SP 800-53.

View full post