Vendor attestationActiveUnited States Federal

Federal Risk and Authorization Management Program

FedRAMP is the U.S. federal program that standardizes security assessment, authorization, and continuous monitoring for cloud services used by federal agencies. AI governance vendors serving federal or defense customers typically need FedRAMP Moderate or High authorization.

This is an attestation a vendor obtains for its own operations — it is distinct from the AI-specific obligations the vendor’s tooling can help you meet. Vendors hold this certification or they don’t; we don’t use partial-coverage tiers here.

Standard owner

United States Federal

Typical certification cycle

See overview

Penalty for misrepresentation

Loss of certification; legal exposure

Vendors that hold FedRAMP

Vendors below have a current third-party attestation against this standard. We list the certification, not coverage levels.

1 vendor

Vendor	HQ	Founded	Size	Pricing	Coverage	Last verified
ServiceNow AI Control Tower	Santa Clara, USA	2004	1000+	Contact for pricing	Certified	Apr 26, 2026

Compare across industries

See which vendors support FedRAMP in your sector.

FedRAMP in Defense & National Security FedRAMP in Education FedRAMP in Employment & HR FedRAMP in Energy & Utilities FedRAMP in Financial Services FedRAMP in Government & Public Sector FedRAMP in Healthcare FedRAMP in Insurance FedRAMP in Legal Services FedRAMP in Manufacturing FedRAMP in Media & Entertainment FedRAMP in Retail & E-commerce FedRAMP in SaaS & Technology FedRAMP in Telecommunications

Last verified April 24, 2026. Informational summary only — not legal advice. Consult qualified counsel for specific obligations.